libgd2 (2.2.5-5.2ubuntu0.19.10.1) eoan-security; urgency=medium * SECURITY UPDATE: NULL pointer dereference in gdImageClone allows attackers to crash an application via a specific function call sequence - debian/patches/CVE-2018-14553.patch: remove manual style copy from src/gd.c and appropriately set stylePos in tests/gdimageclone/style.c. - CVE-2018-14553 -- Avital Ostromich <email address hidden> Mon, 02 Mar 2020 14:41:51 -0500