Format: 1.8
Date: Fri, 10 Jan 2020 12:49:04 -0300
Source: sdl-image1.2
Binary: libsdl-image1.2 libsdl-image1.2-dev
Architecture: arm64
Version: 1.2.12-8ubuntu0.1
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-077.buildd>
Changed-By: Eduardo Barretto <eduardo.barretto@canonical.com>
Description:
 libsdl-image1.2 - Image loading library for Simple DirectMedia Layer 1.2, libraries
 libsdl-image1.2-dev - Image loading library for Simple DirectMedia Layer 1.2, developme
Changes:
 sdl-image1.2 (1.2.12-8ubuntu0.1) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: Arbitrary code execution in the XCF image rendering
     - debian/patches/CVE-2018-3977.patch: Fix potential buffer overflow on
       corrupt or maliciously-crafted XCF file.
     - CVE-2018-3977
   * SECURITY UPDATE: Buffer overflows in IMG_pcx.c
     - debian/patches/IMG_pcx-out-of-bounds.patch: fix multiple OOB issues in
       IMG_pcx.c
     - CVE-2019-5051
     - CVE-2019-12217
     - CVE-2019-12219
     - CVE-2019-12220
     - CVE-2019-12221
     - CVE-2019-12222
   * SECURITY UPDATE: Integer overflow when loading a PCX file
     - debian/patches/CVE-2019-5052.patch: Fix invalid data read on bpl == -1.
     - CVE-2019-5052
   * SECURITY UPDATE: Heap-based buffer over-read in Blit1to4()
     - debian/patches/CVE-2019-7635.patch: fix Heap-Buffer Overflow in
       Blit1to4().
     - CVE-2019-7635
   * SECURITY UPDATE: Heap buffer overflow in IMG_pcx.c
     - debian/patches/CVE-2019-12218.patch: fix heap buffer overflow issue in
       IMG_pcx.c
     - CVE-2019-12218
     - CVE-2019-12216
   * SECURITY UPDATE: Heap-based buffer over-read in BlitNtoN()
     - debian/patches/CVE-2019-13616.patch: validate image size when loading
       BMP files.
     - CVE-2019-13616
Checksums-Sha1:
 2595daae1051265fddb95b0c08d6c48cac7543a3 70076 libsdl-image1.2-dbgsym_1.2.12-8ubuntu0.1_arm64.ddeb
 489ffb3b66558f21e2f655ea000499d5bc8c8d0d 29604 libsdl-image1.2-dev_1.2.12-8ubuntu0.1_arm64.deb
 a98efad87869619c979a619c4cabe5b797442866 26712 libsdl-image1.2_1.2.12-8ubuntu0.1_arm64.deb
 162b5b9e761efb1661922c44d9d0bf790f5e5783 10513 sdl-image1.2_1.2.12-8ubuntu0.1_arm64.buildinfo
Checksums-Sha256:
 385e4e42b45f594f0fba528ca1170adda9e34b413318cb1049ee09e6a6e08a79 70076 libsdl-image1.2-dbgsym_1.2.12-8ubuntu0.1_arm64.ddeb
 c97452456925bb18b3f47482f69a136150f8fe833c7aae9ab1f2a57205eab0fc 29604 libsdl-image1.2-dev_1.2.12-8ubuntu0.1_arm64.deb
 f086f8c2ef3cf527443859edbd69f9f0621ba4ba904323eaafad6edadddad8d3 26712 libsdl-image1.2_1.2.12-8ubuntu0.1_arm64.deb
 bf29c9ce7810ec4f0c78f2aec31576101a53cf6a5eac23e979de0ef1363a711e 10513 sdl-image1.2_1.2.12-8ubuntu0.1_arm64.buildinfo
Files:
 08247ba6e36b0add5d62278c86fe1ef8 70076 debug optional libsdl-image1.2-dbgsym_1.2.12-8ubuntu0.1_arm64.ddeb
 f076353a195fe853198d5d2e6e0a89af 29604 libdevel optional libsdl-image1.2-dev_1.2.12-8ubuntu0.1_arm64.deb
 24d6d6e3d9e394e941f4813aee89943e 26712 libs optional libsdl-image1.2_1.2.12-8ubuntu0.1_arm64.deb
 ede2d8ac01b9ea06b638f2a0cf31b5f1 10513 libs optional sdl-image1.2_1.2.12-8ubuntu0.1_arm64.buildinfo
Original-Maintainer: Debian SDL packages maintainers <pkg-sdl-maintainers@lists.alioth.debian.org>