[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2106-1] libgd2 security update

Package        : libgd2
Version        : 2.1.0-5+deb8u14
CVE ID         : CVE-2018-14553
Debian Bug     : 951287

A vulnerability was discovered in libgd2, the GD graphics library,
whereby an attacker can employ a specific function call sequence to
trigger a NULL pointer dereference, subsequently crash the application
using libgd2, and create a denial of service.

For Debian 8 "Jessie", this problem has been fixed in version

We recommend that you upgrade your libgd2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Attachment: signature.asc
Description: PGP signature

Reply to: