FEDORA-2020-e795f92d79 created by remi 7 months ago for Fedora 32
stable

Version 2.3.0 - 2020-03-22

Security

  • Potential double-free in gdImage*Ptr(). (CVE-2019-6978)
  • gdImageColorMatch() out of bounds write on heap. (CVE-2019-6977)
  • Uninitialized read in gdImageCreateFromXbm(). (CVE-2019-11038)
  • Double-free in gdImageBmp. (CVE-2018-1000222)
  • Potential NULL pointer dereference in gdImageClone(). (CVE-2018-14553)
  • Potential infinite loop in gdImageCreateFromGifCtx(). (CVE-2018-5711)

Fixed

  • Fix #597: add codecov support
  • Fix #596: gdTransformAffineCopy run error
  • Fix #589: Install dependencies move to .travis.yml
  • Fix #586: gdTransformAffineCopy() segfaults on palette images
  • Fix #585: gdTransformAffineCopy() changes interpolation method
  • Fix #584: gdImageSetInterpolationMethod(im, GD_DEFAULT) inconsistent
  • Fix #583: gdTransformAffineCopy() may use unitialized values
  • Fix #533: Remove cmake modules
  • Fix #539: Add RAQM support for cmake
  • Fix #499: gdImageGifAnimAddPtr: heap corruption with 2 identical images
  • Fix #486: gdImageCropAuto(…, GD_CROP_SIDES) crops left but not right
  • Fix #485: auto cropping has insufficient precision
  • Fix #479: Provide a suitable malloc function to liq
  • Fix #474: libtiff link returns 404 HTTP code
  • Fix #450: Failed to open 1 bit per pixel bitmap
  • Fix #440: new_width & new_height exception handling
  • Fix #432: gdImageCrop neglecting transparency
  • Fix #420: Potential infinite loop in gdImageCreateFromGifCtx
  • Fix #411: gd_gd.c format documentation appears to be incorrect
  • Fix #369: Fix new_a init error in gdImageConvolution()
  • Fix #351: gdImageFilledArc() doesn't properly draw pies
  • Fix #338: Fatal and normal libjpeg/libpng errors not distinguishable
  • Fix #169: Update var type to hold bigger w&h for ellipse
  • Fix #164: update doc files install directory in CMakeLists.txt
  • Correct some test depend errors
  • Update cmake min version to 3.7
  • Delete libimagequant source code download action in CMakeLists.txt
  • Improve msys support
  • Fix some logic error in CMakeLists.txt
  • Remove the following macro: HAVE_STDLIB_H, HAVE_STRING_H, HAVE_STDDEF_H, HAVE_LIMITS_H, HAVE_ERRNO_H, AC_C_CONST

Notice:

  • fix for CVE-2018-5711, CVE-2018-1000222, CVE-2019-6977, CVE-2019-6978, and CVE-2018-14553 were already applied in previous packages.
  • gdlib-config command have been dropped

How to install

sudo dnf upgrade --advisory=FEDORA-2020-e795f92d79

This update has been submitted for testing by remi.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago
User Icon pwalter commented & provided feedback 7 months ago
karma

Works

User Icon cairo provided feedback 7 months ago
karma

This update can be pushed to stable now if the maintainer wishes

7 months ago

This update has been submitted for stable by remi.

7 months ago

This update has been pushed to stable.

7 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
7 months ago

Automated Test Results