[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3781-1] libgd2 security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3781-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
April 07, 2024                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : libgd2
Version        : 2.2.5-5.2+deb10u1
CVE ID         : CVE-2018-14553 CVE-2021-38115 CVE-2021-40812


Several issues have been found in libgd2, a GD Graphics Library.
They are related to out-of-bounds reads or NULL pointer derefence allowing denial of service attacks.


For Debian 10 buster, these problems have been fixed in version
2.2.5-5.2+deb10u1.

We recommend that you upgrade your libgd2 packages.

For the detailed security status of libgd2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libgd2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmYR2hpfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy
MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7
WEfZIQ/+NUSbfWtenPmMs8ZnsH2nmWfTPFKgXceMXfG2VjgRo9xyrXjths/fQHQG
DhL87JyjLPov8DxsxF3Kt0eZhrxitKFfBxfB7uit1p4fptPuvw7aGAHK/6IOIH07
Fq0KP2AmKNVdUVFnm7Sb4lE0FucY7k/uFqGo3+nnESYE5UguVOgJc+23xUQydRHB
9HoY026wGxO9lZGirCmn3tggPwTW01ZEtbTJhGQXSamNRjO4Ac+Km0y4wN00LmDV
3ZMyspsvmLvqreovN/Msk18rGgfxcHP8ZZWEPLR19FDyTgRLHWUVhHGAunRG0GHS
UxBFK4RmURpM0ZWVeCS8HeivBl1AmNIPi2NPIrLd/cg215zAmZ6piXhw/JQiLR+G
gaFfhWasl2iOfyyJA6CCNTVJAX0QH+7GyOi1xAFpwZjXVo/kjrMOWQfSU36+v+iO
NksZPVFt8Tw+8EAvF4Hz7vFX8Fj91SSSMiJrkp9aqKmANji2hcvc7OfuZH9D14eh
AB/IGlGaCq8cc5etdFcqHzh3QOOpAIjPhc82s9Z4XZntIICOkxpTMNqVoPumyU8L
U7otWsPZ7btpdWjL6Q0s/FvlTmmoqztfmrW1xYVWzLKiq7o2seb40Z5xRkj1PXUB
n99gI7rHOG1e6BbI2fBFGPqyTbaEBwWgSkTjqOdJUv7fu43cOvU=
=OPAm
-----END PGP SIGNATURE-----


Reply to: