Accepted zgv 5.5-3woody1 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 11 Dec 2004 20:43:05 +0100
Source: zgv
Binary: zgv
Architecture: source i386
Version: 5.5-3woody1
Distribution: stable-security
Urgency: high
Maintainer: Martin Schulze <joey@debian.org>
Changed-By: Martin Schulze <joey@infodrom.org>
Description:
zgv - SVGAlib graphics viewer
Changes:
zgv (5.5-3woody1) stable-security; urgency=high
.
* Non-maintainer upload by the Security Team
* http://www.svgalib.org/rus/zgv/zgv-5.8-integer-overflow-fix.diff
* Applied upstream patch to prevent integer overflow that could lead to
arbitrary code execution [src/readbmp.c, src/readgif.c,
src/readjpeg.c, src/readmrf.c, src/readpcd.c, src/readpcx.c,
src/readpng.c, src/readpnm.c, src/readprf.c, src/readtga.c,
src/readtiff.c, src/readxbm.c, src/readxpm.c, src/zgv.h,
CAN-2004-0994]
* Applied upstream patch to fix exploitable malloc() integer overflow
[src/readxpm.c]
* Applied upstream patch to fix segmentation fault for animated GIF
images [src/readgif.c, CAN-2004-0999]
Files:
c454fd7c28ea89dc82656c50e5d810d5 601 graphics optional zgv_5.5-3woody1.dsc
629386a4df72f6ec007319bf12db1374 329235 graphics optional zgv_5.5.orig.tar.gz
0098f512c4f19e8b71e83c33a882ca91 8516 graphics optional zgv_5.5-3woody1.diff.gz
55fe6b71b88b8cf798f8f5d75841d7bc 211748 graphics optional zgv_5.5-3woody1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFBu1MrW5ql+IAeqTIRAsVdAKC5zAPx6lRyHp0NXzMeoXZT6e297ACgn7eB
1YrWfy2FrVyzi3vFZET552I=
=Ei84
-----END PGP SIGNATURE-----
Accepted:
zgv_5.5-3woody1.diff.gz
to pool/main/z/zgv/zgv_5.5-3woody1.diff.gz
zgv_5.5-3woody1.dsc
to pool/main/z/zgv/zgv_5.5-3woody1.dsc
zgv_5.5-3woody1_i386.deb
to pool/main/z/zgv/zgv_5.5-3woody1_i386.deb
Reply to: