Accepted libgd2 2.1.0-5+deb8u9 (source amd64) into proposed-updates->stable-new, proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted libgd2 2.1.0-5+deb8u9 (source amd64) into proposed-updates->stable-new, proposed-updates
From: Ondřej Surý <ondrej@debian.org>
Date: Sun, 12 Feb 2017 22:17:18 +0000
Message-id: <[🔎] E1cd2SM-000AS4-4b@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Jan 2017 13:35:12 +0100
Source: libgd2
Binary: libgd-tools libgd-dev libgd3 libgd-dbg libgd2-xpm-dev libgd2-noxpm-dev
Architecture: source amd64
Version: 2.1.0-5+deb8u9
Distribution: jessie-security
Urgency: high
Maintainer: GD team <pkg-gd-devel@lists.alioth.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Description:
 libgd-dbg  - Debug symbols for GD Graphics Library
 libgd-dev  - GD Graphics Library (development version)
 libgd-tools - GD command line tools and example code
 libgd2-noxpm-dev - GD Graphics Library (transitional package)
 libgd2-xpm-dev - GD Graphics Library (transitional package)
 libgd3     - GD Graphics Library
Changes:
 libgd2 (2.1.0-5+deb8u9) jessie-security; urgency=high
 .
   * [CVE-2016-6906]: Fix OOB reads of the TGA decompression buffer
   * [CVE-2016-6912]: Fix double-free in gdImageWebPtr()
   * [CVE-2016-10166]: Fix potential unsigned underflow
   * [CVE-2016-10167]: Fix DOS vulnerability in gdImageCreateFromGd2Ctx()
   * [CVE-2016-6906]: Fix OOB reads of the TGA decompression buffer
   * [CVE-2016-9317]: Check for oversized images
   * [CVE-2016-10168]: Fix signed integer Overflow gd_io.c
Checksums-Sha1:
 22df92707c8bce03da92656a9ea69b6ffd37232f 2481 libgd2_2.1.0-5+deb8u9.dsc
 a0bdbcc31dd16d7a79a8a49063ff88957c148a20 37876 libgd2_2.1.0-5+deb8u9.debian.tar.xz
 7a39f57c351476007bebdd4e86119fc78075be61 42528 libgd-tools_2.1.0-5+deb8u9_amd64.deb
 00f9403f0a6c8c70c0d4f11f9e0d1b777106bc93 286876 libgd-dev_2.1.0-5+deb8u9_amd64.deb
 46766ca001c55b454fa6444915df29a8260d9bee 147916 libgd3_2.1.0-5+deb8u9_amd64.deb
 2d7312d9b3b4c509915fbd4319ab6e3c8c4f2335 314166 libgd-dbg_2.1.0-5+deb8u9_amd64.deb
 f0b57cd29b83a9dd9ae85c80fd806741e059a513 1234 libgd2-xpm-dev_2.1.0-5+deb8u9_amd64.deb
 6779a657e15045258b5159721f09ae9744e678e1 1242 libgd2-noxpm-dev_2.1.0-5+deb8u9_amd64.deb
Checksums-Sha256:
 2d12d2498cc99e9323a6bc1612fcdc2179201a1cf396c1cece27b3a2e027c00b 2481 libgd2_2.1.0-5+deb8u9.dsc
 fcabeec555ac03ac20d286ae3f50e21aee8a6f6a11057e3149c071bd3210a4c4 37876 libgd2_2.1.0-5+deb8u9.debian.tar.xz
 d3c2acc2854b1d71151e47c252c0be8f7ce07177e88efaa64d30931b788a7f59 42528 libgd-tools_2.1.0-5+deb8u9_amd64.deb
 8dcaad7caee11122d6fb6aa246c36a08e35225474bb665929e612615524a3f87 286876 libgd-dev_2.1.0-5+deb8u9_amd64.deb
 2bb676e08395f3f5044348ab86dda4d6881f0749bc6b9434343aa5de38a90058 147916 libgd3_2.1.0-5+deb8u9_amd64.deb
 adac961a1d017c3993e673c64266cbc2fbef3a76bb97e2a915b508ddda433eeb 314166 libgd-dbg_2.1.0-5+deb8u9_amd64.deb
 adb3fa21214e9229d720ad874722e76fde28fd9fccdb310592885d91bb43a6a2 1234 libgd2-xpm-dev_2.1.0-5+deb8u9_amd64.deb
 3f09f9fbb54c22020013d5995b760c8647d86498e51bde7891eb367739c37cad 1242 libgd2-noxpm-dev_2.1.0-5+deb8u9_amd64.deb
Files:
 7d948aa445a8ae541444535468fa4115 2481 graphics optional libgd2_2.1.0-5+deb8u9.dsc
 fafc27b162f2b39b7dc0aeb0bf167bac 37876 graphics optional libgd2_2.1.0-5+deb8u9.debian.tar.xz
 b6e27bf31373598041260e59ec2402a4 42528 graphics optional libgd-tools_2.1.0-5+deb8u9_amd64.deb
 9c13f9e75d84f6f9a1af051001a9847c 286876 libdevel optional libgd-dev_2.1.0-5+deb8u9_amd64.deb
 8e85f10f8a1bfe9562df4d3060f49002 147916 libs optional libgd3_2.1.0-5+deb8u9_amd64.deb
 598df3201af21908ac4f217e80461d35 314166 debug extra libgd-dbg_2.1.0-5+deb8u9_amd64.deb
 9042bff18b69a866f1b355086787dce4 1234 oldlibs extra libgd2-xpm-dev_2.1.0-5+deb8u9_amd64.deb
 832e8f628496b82151cf0cef04b713d0 1242 oldlibs extra libgd2-noxpm-dev_2.1.0-5+deb8u9_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=Eu0E
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Accepted jasper 1.900.1-debian1-2.4+deb8u2 (source amd64) into proposed-updates->stable-new, proposed-updates
Next by Date: Accepted ntfs-3g 1:2014.2.15AR.2-1+deb8u3 (source amd64) into proposed-updates->stable-new, proposed-updates
Previous by thread: Accepted jasper 1.900.1-debian1-2.4+deb8u2 (source amd64) into proposed-updates->stable-new, proposed-updates
Next by thread: Accepted ntfs-3g 1:2014.2.15AR.2-1+deb8u3 (source amd64) into proposed-updates->stable-new, proposed-updates
Index(es):
- Date
- Thread