[Bug 1648942] [NEW] Sync libwebp 0.5.1-4 (main) from Debian unstable (main)

Jeremy Bicha jbicha at linux.com
Sat Dec 10 08:24:55 UTC 2016 

*** This bug is a security vulnerability ***

Public security bug reported:

Please sync libwebp 0.5.1-4 (main) from Debian unstable (main)

Explanation of the Ubuntu delta and why it can be dropped:
  * debian/patches/armhf_update_neon_support.patch: configure: do not
    rely on arm_neon.h for neon detection.  Closes LP: #1630349.

That change is included in 0.5.1-4.

Changelog entries since current zesty version 0.5.1-2ubuntu1:

libwebp (0.5.1-4) unstable; urgency=medium

  * Import armh compilation patch from Ubuntu (closes: #845749)

 -- Jeff Breidenbach <jab at debian.org>  Fri, 09 Dec 2016 10:42:47 -0800

libwebp (0.5.1-3) unstable; urgency=medium

  * Fix CVE-2016-8888 and CVE-2016-9085 (closes: #842714)

 -- Jeff Breidenbach <jab at debian.org>  Wed, 09 Nov 2016 16:27:04 -0800

** Affects: libwebp (Ubuntu)
     Importance: Wishlist
         Status: New

** Changed in: libwebp (Ubuntu)
   Importance: Undecided => Wishlist

** Information type changed from Public to Public Security

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-8888

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-9085

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1648942

Title:
  Sync libwebp 0.5.1-4 (main) from Debian unstable (main)

Status in libwebp package in Ubuntu:
  New

Bug description:
  Please sync libwebp 0.5.1-4 (main) from Debian unstable (main)

  Explanation of the Ubuntu delta and why it can be dropped:
    * debian/patches/armhf_update_neon_support.patch: configure: do not
      rely on arm_neon.h for neon detection.  Closes LP: #1630349.

  That change is included in 0.5.1-4.

  Changelog entries since current zesty version 0.5.1-2ubuntu1:

  libwebp (0.5.1-4) unstable; urgency=medium

    * Import armh compilation patch from Ubuntu (closes: #845749)

   -- Jeff Breidenbach <jab at debian.org>  Fri, 09 Dec 2016 10:42:47 -0800

  libwebp (0.5.1-3) unstable; urgency=medium

    * Fix CVE-2016-8888 and CVE-2016-9085 (closes: #842714)

   -- Jeff Breidenbach <jab at debian.org>  Wed, 09 Nov 2016 16:27:04 -0800

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libwebp/+bug/1648942/+subscriptions

More information about the Ubuntu-sponsors mailing list