lp:ubuntu/intrepid-security/libgd2
- Get this branch:
- bzr branch lp:ubuntu/intrepid-security/libgd2
Branch merges
Branch information
Recent revisions
- 19. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible code execution via GD
file with large number of colors
- debian/patches/ 9000_security_ CVE-2009- 3546.patch: make sure number of
colors specified in gd file isn't bigger than gdMaxColors in gd_gd.c.
- CVE-2009-3546 - 18. By Kees Cook
-
* Merge from debian unstable, remaining changes:
- debian/control: Drop unnecessary build dependency 'gnulib'. - 17. By Steve Langasek
-
* debian/rules: Remove -Wl,--disable-rpath from CFLAGS, as this is not
a valid linker option. LP: #194518.
* debian/rules: export the CFLAGS, so they're consistently used even
when not called via dpkg-buildpackage. - 16. By Kees Cook
-
* Merge from debian unstable, remaining changes:
- debian/control: Drop unnecessary build dependency 'gnulib'.
- maintainer field updates - 15. By Kees Cook
-
* Merge from debian unstable, remaining changes:
- debian/control: Drop unnecessary build dependency 'gnulib'.
- maintainer field updates
* gd_png.c: apply upstream fixes for endless loop bug.
* References
http://bugs.libgd. org/?do= details& task_id= 86
CVE-2007-2756 - 14. By Kees Cook
-
* Merge from debian unstable, remaining changes:
- debian/control: Drop unnecessary build dependency 'gnulib'. - 13. By Martin Pitt
-
* Merge from debian unstable, remaining changes:
- debian/control: Drop unnecessary build dependency 'gnulib'.
- debian/rules: Don't use copyright-check.mk, it breaks cleaning. - 12. By Martin Pitt
-
* Synchronize to Debian, remaining Ubuntu changes:
- debian/control: Drop unnecessary build dependency 'gnulib'.
- debian/rules: Don't use copyright-check.mk, it breaks cleaning. - 11. By Martin Pitt
-
* SECURITY UPDATE: DoS due to infinite loop.
* Add debian/patches/ 1006_infinite_ loop.patch:
- Cut off loops in GIF reading functions after 1024 iterations to prevent
infinite loops.
- Patch provided from upstream (Xavier Roche).
- CVE-2006-2906 - 10. By Scott James Remnant (Canonical)
-
* Drop seemingly unnecessary build-dep on gnulib.
* Drop annoying copyright check that breaks the clean target.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/libgd2