[ubuntu/trusty-proposed] gimp 2.8.6-1ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Fri Dec 6 20:25:20 UTC 2013 

gimp (2.8.6-1ubuntu2) trusty; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    huge color maps in xwd plugin
    - debian/patches/CVE-2013-1913.patch: limit number of color map entries
      in plug-ins/common/file-xwd.c.
    - CVE-2013-1913
  * SECURITY UPDATE: denial of service and possible code execution via
    large number of color map entries in xwd plugin
    - debian/patches/CVE-2013-1978.patch: validate number of color map
      entries in plug-ins/common/file-xwd.c
    - CVE-2013-1978
  * debian/patches/freetype-251.patch: fix FTBFS with newer freetype.

Date: Fri, 06 Dec 2013 13:17:01 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/gimp/2.8.6-1ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 06 Dec 2013 13:17:01 -0500
Source: gimp
Binary: libgimp2.0 gimp gimp-data libgimp2.0-dev libgimp2.0-doc gimp-dbg
Architecture: source
Version: 2.8.6-1ubuntu2
Distribution: trusty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 gimp       - The GNU Image Manipulation Program
 gimp-data  - Data files for GIMP
 gimp-dbg   - Debugging symbols for GIMP
 libgimp2.0 - Libraries for the GNU Image Manipulation Program
 libgimp2.0-dev - Headers and other files for compiling plugins for GIMP
 libgimp2.0-doc - Developers' Documentation for the GIMP library
Changes: 
 gimp (2.8.6-1ubuntu2) trusty; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     huge color maps in xwd plugin
     - debian/patches/CVE-2013-1913.patch: limit number of color map entries
       in plug-ins/common/file-xwd.c.
     - CVE-2013-1913
   * SECURITY UPDATE: denial of service and possible code execution via
     large number of color map entries in xwd plugin
     - debian/patches/CVE-2013-1978.patch: validate number of color map
       entries in plug-ins/common/file-xwd.c
     - CVE-2013-1978
   * debian/patches/freetype-251.patch: fix FTBFS with newer freetype.
Checksums-Sha1: 
 ec38eb627868dcc0317099cbcfb336b5abd331f6 3224 gimp_2.8.6-1ubuntu2.dsc
 1945346aba5d2dd6c427a6b70e00cfb0443e119f 49737 gimp_2.8.6-1ubuntu2.debian.tar.gz
Checksums-Sha256: 
 ff7c229a3e9da37c01d8d0f859118d827a25e9130fe5adb1bbedb7519c0d7524 3224 gimp_2.8.6-1ubuntu2.dsc
 f0dc3723cbf8ebafff8584fbd9690c21c95db67d087b430734bbbdb87883a02f 49737 gimp_2.8.6-1ubuntu2.debian.tar.gz
Files: 
 fc6b183a6a8370d4d5b21c6063fa0ce1 3224 graphics optional gimp_2.8.6-1ubuntu2.dsc
 9be1b819335dca181db9100d2dcb02c4 49737 graphics optional gimp_2.8.6-1ubuntu2.debian.tar.gz
Original-Maintainer: Ari Pollak <ari at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iQIcBAEBCgAGBQJSojJJAAoJEGVp2FWnRL6TdL4P/1s1Q3Ee9r8v2WIzYcwLebeP
TPFA2kAv1FOctyDGa2kl26/Fz3sansDnNyczczvQs429Qb6gTrHt93w8qVNVNnUh
+ta20QoPT8SIRR+0GIcUd5Pcq+fufjJ20lwjVAjn4s0WtU8Q78yWtDHDJUBhzzoV
ciFB4h4uNRu7/nReuYEWFwZMIeA2F3WU5f4/Ftsb+UrGW7nOw8EZOZP+jBePWBoo
wZkOVa8VNWdnHgVtu7bX3RnWSYywppIUpoB+puoLf1aQ8n0ecZlqoEbvdyn6BYOh
iTJ8EKDVIYTxXDOTOlNNLbQYxegRnePRDTkgayO6TTjeOWHFVF/5uxCP9Zn9EW+T
+N+qpIA65+rXxjFCE7BZOqL47nHOE6n64TXuqy0Gz8Aw1ZW03o2BRjvLtGrF5AXp
EGA0dPopGx9XSXyAMYCJdcBc+j2/wsmp9rRW6fd57We74MYWRH3QSDaX7bsU5lAv
QKX0jbxir0C+w8nJNiLLcD/SpKEhttkkFf/F9r0iorEohlZp+LfFxvfch+UDnWWB
CFb8SWDJwyJbEjjKtC2ammBcYKLH4JAInNICoDFP8ylWrBKxOib9y7CnFPb77btS
2DJ91MxQYD0QajjrFyaBvGeWJsdKNU7hrNinyezj5mpAFbOvQSt0R6y8eKm7zjWt
/GBWduNLlA0yWlmO3Ocd
=DNAw
-----END PGP SIGNATURE-----

More information about the Trusty-changes mailing list