Ubuntu
libgd2 package

Branches for Dapper

Name Status Last Modified Last Commit
lp:ubuntu/dapper/libgd2 2 Mature 2009-08-04 19:30:25 UTC
8. Use LD_LIBRARY_PATH for tests, not LD...

Author: LaMont Jones
Revision Date: 2006-03-28 13:48:17 UTC

Use LD_LIBRARY_PATH for tests, not LD_PRELOAD
lp:ubuntu/dapper-security/libgd2 2 Mature 2009-11-04 10:02:17 UTC
12. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2009-11-04 10:02:17 UTC

* SECURITY UPDATE: denial of service via GIF image with no global color
  map
  - debian/patches/06_SECURITY_CVE-2007-3475.patch: make sure we have a
    global color map in gd_gif_in.c.
  - CVE-2007-3475
* SECURITY UPDATE: denial of service via large color index values
  - debian/patches/07_SECURITY_CVE-2007-3476.patch: compare with
    gdMaxColors in gd_gif_in.c.
  - CVE-2007-3476
* SECURITY UPDATE: denial of service via large start or end angle degree
  value
  - debian/patches/08_SECURITY_CVE-2007-3477.patch: validate start and
    end values in gd.c.
  - CVE-2007-3477
* SECURITY UPDATE: denial of service and possible code execution via
  large color index
  - debian/patches/09_SECURITY_CVE-2009-3293.patch: validate color index
    in gd.c.
  - CVE-2009-3293
* SECURITY UPDATE: denial of service and possible code execution via GD
  file with large number of colors
  - debian/patches/10_SECURITY_CVE-2009-3546.patch: make sure number of
    colors specified in gd file isn't bigger than gdMaxColors in gd_gd.c.
  - CVE-2009-3546
lp:ubuntu/dapper-updates/libgd2 2 Mature 2009-11-04 10:02:17 UTC
12. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2009-11-04 10:02:17 UTC

* SECURITY UPDATE: denial of service via GIF image with no global color
  map
  - debian/patches/06_SECURITY_CVE-2007-3475.patch: make sure we have a
    global color map in gd_gif_in.c.
  - CVE-2007-3475
* SECURITY UPDATE: denial of service via large color index values
  - debian/patches/07_SECURITY_CVE-2007-3476.patch: compare with
    gdMaxColors in gd_gif_in.c.
  - CVE-2007-3476
* SECURITY UPDATE: denial of service via large start or end angle degree
  value
  - debian/patches/08_SECURITY_CVE-2007-3477.patch: validate start and
    end values in gd.c.
  - CVE-2007-3477
* SECURITY UPDATE: denial of service and possible code execution via
  large color index
  - debian/patches/09_SECURITY_CVE-2009-3293.patch: validate color index
    in gd.c.
  - CVE-2009-3293
* SECURITY UPDATE: denial of service and possible code execution via GD
  file with large number of colors
  - debian/patches/10_SECURITY_CVE-2009-3546.patch: make sure number of
    colors specified in gd file isn't bigger than gdMaxColors in gd_gd.c.
  - CVE-2009-3546
13 of 3 results FirstPreviousNextLast