Format: 1.8 Date: Tue, 28 Feb 2017 10:37:45 -0500 Source: libgd2 Binary: libgd-tools libgd-dev libgd3 libgd-dbg libgd2-xpm-dev libgd2-noxpm-dev Architecture: powerpc Version: 2.1.0-3ubuntu0.6 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libgd-dbg - Debug symbols for GD Graphics Library libgd-dev - GD Graphics Library (development version) libgd-tools - GD command line tools and example code libgd2-noxpm-dev - GD Graphics Library (transitional package) libgd2-xpm-dev - GD Graphics Library (transitional package) libgd3 - GD Graphics Library Changes: libgd2 (2.1.0-3ubuntu0.6) trusty-security; urgency=medium . * SECURITY UPDATE: potential unsigned underflow - debian/patches/CVE-2016-10166.patch: refactor loop in src/gd_interpolation.c. - CVE-2016-10166 * SECURITY UPDATE: DoS vulnerability in gdImageCreateFromGd2Ctx() - debian/patches/CVE-2016-10167.patch: properly fail in src/gd_gd2.c. - CVE-2016-10167 * SECURITY UPDATE: signed integer overflow in gd_io.c - debian/patches/CVE-2016-10168.patch: check counts in src/gd_gd2.c. - CVE-2016-10168 * SECURITY UPDATE: OOB reads of the TGA decompression buffer - debian/patches/CVE-2016-6906-pre1.patch: fix coverty warning in src/gd_tga.c. - debian/patches/CVE-2016-6906-pre2.patch: fix TGA RLE decoding in src/gd_tga.c. - debian/patches/CVE-2016-6906-1.patch: check for overflow in src/gd_tga.c. - debian/patches/CVE-2016-6906-2.patch: add another overflow check in src/gd_tga.c. - CVE-2016-6906 * SECURITY UPDATE: double-free in gdImageWebPtr() - debian/patches/CVE-2016-6912.patch: add helper function to indicate failure in src/gd_webp.c. - CVE-2016-6912 * SECURITY UPDATE: DoS via oversized image - debian/patches/CVE-2016-9317.patch: check for oversized images in src/gd.c. - CVE-2016-9317 * SECURITY UPDATE: DoS via stack consumption - debian/patches/CVE-2016-9933.patch: check for invalid colors in src/gd.c. - CVE-2016-9933 Checksums-Sha1: d01f0e141ebed8e8ca9cf77d277a9e25cf9dcc33 17776 libgd-tools_2.1.0-3ubuntu0.6_powerpc.deb 0dfa8968e87c0d998e454f00524c14b372c43c7f 242682 libgd-dev_2.1.0-3ubuntu0.6_powerpc.deb 6251fa7f837a20d8b82e74364e95a60954c8396c 114610 libgd3_2.1.0-3ubuntu0.6_powerpc.deb ab3f175f1e6d839e2cfe93b381772cc25d0d825a 316202 libgd-dbg_2.1.0-3ubuntu0.6_powerpc.deb 2d8b9158c504517f4c7d6becf81d73f0681e7616 22080 libgd-tools-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb 8711a10da04394eab579f7d267b4672ac2f36d29 202608 libgd3-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb Checksums-Sha256: f142ad04a9571aa3428c0708b26606a84d8d1a2fe5ec472dfe31edd8151a66b2 17776 libgd-tools_2.1.0-3ubuntu0.6_powerpc.deb 58087631ed09e76ffd3c14a5fda16fa803cbc509b7f7cd60e47c89b5d30b85a8 242682 libgd-dev_2.1.0-3ubuntu0.6_powerpc.deb 2ee615e9bb0bc1c9e4e6bae3602124e92ad9899601c1053f21b0126702101912 114610 libgd3_2.1.0-3ubuntu0.6_powerpc.deb 3382c610da0362a37a09157b9f500fc7e2684809f1eab69613503f74f93e7d2b 316202 libgd-dbg_2.1.0-3ubuntu0.6_powerpc.deb 8c54d9d568c1f8c6c1bf42f51529719994560f304737b1d3c16d688d641fdd99 22080 libgd-tools-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb e90ae8a9e411c5a0524a6b5ca17dcc862eb1a4b01887dfc0d7933720fee3546e 202608 libgd3-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb Files: 58fcb6c093071f07c3cd4763d97eebb2 17776 graphics optional libgd-tools_2.1.0-3ubuntu0.6_powerpc.deb aa6f3fa5b3013bcfa44a274ec813a806 242682 libdevel optional libgd-dev_2.1.0-3ubuntu0.6_powerpc.deb 0697a9e1f85d08b2fbae6048225a2b2d 114610 libs optional libgd3_2.1.0-3ubuntu0.6_powerpc.deb f646577742661cee98b0e95acf5d51c8 316202 debug extra libgd-dbg_2.1.0-3ubuntu0.6_powerpc.deb 3a2ea2818cecf4d7336908dc444a2428 22080 graphics extra libgd-tools-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb 40c465df919741c7462c2fe75b8e3ed5 202608 libs extra libgd3-dbgsym_2.1.0-3ubuntu0.6_powerpc.ddeb Original-Maintainer: GD team