FEDORA-2017-7cc0e6a5f5

security update in Fedora 26 for gd

Status: stable 2 years ago

Version 2.2.5 - 2017-08-30

  • Security

    • Double-free in gdImagePngPtr(). CVE-2017-6362
    • Buffer over-read into uninitialized memory. CVE-2017-7890
  • Fixed

    • Fix #109: XBM reading fails with printed error
    • Fix #338: Fatal and normal libjpeg/ibpng errors not distinguishable
    • Fix #357: 2.2.4: Segfault in test suite
    • Fix #386: gdImageGrayScale() may produce colors
    • Fix #406: webpng -i removes the transparent color
    • Fix Coverity #155475: Failure to restore alphaBlendingFlag
    • Fix Coverity #155476: potential resource leak
    • Fix several build issues and test failures
    • Fix and reenable optimized support for reading 1 bps TIFFs

Comments 8

This update has been submitted for testing by remi.

This update has been pushed to testing.

Works

karma: +1

Works great! LGTM! =)

karma: +1

works for me

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+4
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Automated Test Results