imlib2 (1.4.7-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: denial of service (divide-by-zero) via drawing
a 2x1 ellipse.
- debian/patches/debian/patches/03_CVE-2011-5326.patch: ensure
denominators are not zero.
- CVE-2011-5326
* SECURITY UPDATE: denial of service due to out-of-bounds read.
- debian/patches/debian/patches/04_CVE-2016-3993.patch: check
boundary condition before reading array element.
- CVE-2016-3993
* SECURITY UPDATE: out-of-bounds read handling GIFs leading to denial
of service or information disclosure.
- debian/patches/debian/patches/05_CVE-2016-3994.patch: ensure
colormap limits are honored.
- CVE-2016-3994
* SECURITY UPDATE: different integer overflow on 32 bit arches
leading to a denial of service
- debian/patches/debian/patches/06_CVE-2016-4024.patch: reduce
allowed dimensions even further.
- CVE-2016-4024
Date: 2016-09-01 23:18:12.702028+00:00
Changed-By: Steve Beattie <[email protected]>
Signed-By: Ubuntu Archive Robot
<[email protected]>
https://launchpad.net/ubuntu/+source/imlib2/1.4.7-1ubuntu0.1
Sorry, changesfile not available.
--
Xenial-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
