Format: 1.8
Date: Thu, 01 Sep 2016 00:29:09 -0700
Source: imlib2
Binary: libimlib2 libimlib2-dev
Architecture: powerpc
Version: 1.4.6-2ubuntu0.1
Distribution: trusty
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@denneed04.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 libimlib2  - image loading, rendering, saving library
 libimlib2-dev - image loading, rendering, saving library (development files)
Changes: 
 imlib2 (1.4.6-2ubuntu0.1) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: denial of service (divide-by-zero) via drawing
     a 2x1 ellipse.
     - debian/patches/debian/patches/04_CVE-2011-5326.patch: ensure
       denominators are not zero.
     - CVE-2011-5326
   * SECURITY UPDATE: denial of service (segmentation fault) via a
     GIF image without a colormap.
     - debian/patches/debian/patches/CVE-2014-9762.patch: return error if
       no colormap.
     - CVE-2014-9762
   * SECURITY UPDATE: denial of service (divide-by-zero) handling
     PNM files.
     - debian/patches/debian/patches/CVE-2014-9763.patch: ensure
       denominators are not zero.
     - CVE-2014-9763
   * SECURITY UPDATE: denial of service (segmentation fault) handling
     certain GIF images
     - debian/patches/debian/patches/CVE-2014-9764.patch: check for NULL.
     - CVE-2014-9764
   * SECURITY UPDATE: integer overflow leading to denial of service
     - debian/patches/debian/patches/05_CVE-2014-9771.patch: reduce
       maximum allowed image dimensions.
     - CVE-2014-9771
   * SECURITY UPDATE: denial of service due to out-of-bounds read.
     - debian/patches/debian/patches/06_CVE-2016-3993.patch: check
       boundary condition before reading array element.
     - CVE-2016-3993
   * SECURITY UPDATE: out-of-bounds read handling GIFs leading to denial
     of service or information disclosure.
     - debian/patches/debian/patches/07_CVE-2016-3994.patch: ensure
       colormap limits are honored.
     - CVE-2016-3994
   * SECURITY UPDATE: different integer overflow on 32 bit arches
     leading to a denial of service
     - debian/patches/debian/patches/08_CVE-2016-4024.patch: reduce
       allowed dimensions even further.
     - CVE-2016-4024
Checksums-Sha1: 
 c2c090c03988c0ab84b896a464b8284903cf019d 151704 libimlib2_1.4.6-2ubuntu0.1_powerpc.deb
 143701e5a30cac76057411f760370a220fbb2036 149778 libimlib2-dev_1.4.6-2ubuntu0.1_powerpc.deb
 4c0268e44febf947422bb8499ceb9a97d42f4cbd 304514 libimlib2-dbgsym_1.4.6-2ubuntu0.1_powerpc.ddeb
Checksums-Sha256: 
 b07da733c3823246e9275addd292b4b4108329b3e70ba45c96d5b51ae219f646 151704 libimlib2_1.4.6-2ubuntu0.1_powerpc.deb
 82db3546b68e9fd1cc5311664ccfc94c7c2075e65d9ebfd4a93cfc0568c76311 149778 libimlib2-dev_1.4.6-2ubuntu0.1_powerpc.deb
 09bf037c65da431a2cb8b66e6e2a431700b982038901e7a58b6361d58801f097 304514 libimlib2-dbgsym_1.4.6-2ubuntu0.1_powerpc.ddeb
Files: 
 bcf50017454cdb304b021c8b7ae85dff 151704 libs optional libimlib2_1.4.6-2ubuntu0.1_powerpc.deb
 112bbafd6613299a52517d16db26fb09 149778 libdevel optional libimlib2-dev_1.4.6-2ubuntu0.1_powerpc.deb
 bb3fda0f17ff83087c3a78b86cefebc5 304514 libs extra libimlib2-dbgsym_1.4.6-2ubuntu0.1_powerpc.ddeb
Original-Maintainer: Alessandro Ghedini <ghedo@debian.org>