Daniel Baumann wrote:
giflib 4.x uploaded, replacing giflib 3.x.
Due to changed binary names, the package has to go through NEW.
For the impatients, the package is also available at
http://archive.daniel-baumann.ch/debian/packages/giflib/
Hi Daniel,
Do you plan to add dpatch patches 02 and
Kevin B. McCarty wrote:
I noticed that it's non-trivial to install the libgif4 .deb at the
moment. It conflicts with libungif4g since the latter ships symlinks of
libgif.so.4 and libgif.so.4.1.4, and just about everything using
libungif.so.4 has a versioned dependency so the Provides doesn't
giflib 4.x uploaded, replacing giflib 3.x.
Due to changed binary names, the package has to go through NEW.
For the impatients, the package is also available at
http://archive.daniel-baumann.ch/debian/packages/giflib/
--
Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist
Email:
Package: giflib3g
Version: 3.0-11
Severity: grave
Justification: user security hole
Hello,
It appears that all versions of giflib in Debian (3.0-11 in Sarge,
3.0-12 in Etch/Sid) are vulnerable to CVE-2005-2974 and CVE-2005-3350,
which were fixed for giflib and libungif in version 4.1.4 upstream.
4 matches
Mail list logo