[Git][security-tracker-team/security-tracker][master] Two libgd2 issues fixed in unstable
Salvatore Bonaccorso
carnil at debian.org
Thu Oct 11 05:25:08 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ffa02825 by Salvatore Bonaccorso at 2018-10-11T04:24:46Z
Two libgd2 issues fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6218,7 +6218,7 @@ CVE-2018-1000225 (Cobbler version Verified as present in Cobbler versions 2.6.11
CVE-2018-1000224 (Godot Engine version All versions prior to 2.1.5, all 3.0 versions ...)
NOT-FOR-US: Godot
CVE-2018-1000222 (Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability ...)
- - libgd2 <unfixed> (low; bug #906886)
+ - libgd2 2.2.5-4.1 (low; bug #906886)
[stretch] - libgd2 <no-dsa> (Minor issue, will be fixed via point release)
[jessie] - libgd2 <postponed> (Minor issue)
NOTE: https://github.com/libgd/libgd/issues/447
@@ -33348,7 +33348,7 @@ CVE-2018-5711 (gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PH
NOTE: Fixed in 5.6.33, 7.0.27, 7.1.13, 7.2.1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=75571
NOTE: https://hhvm.com/blog/2018/05/04/hhvm-3.25.3.html
- - libgd2 <unfixed> (bug #887485)
+ - libgd2 2.2.5-4.1 (bug #887485)
[stretch] - libgd2 <no-dsa> (Minor issue, will be fixed via point release)
[jessie] - libgd2 <postponed> (Minor issue, can be fixed along in a future update)
NOTE: https://github.com/libgd/libgd/issues/420
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ffa028252414b33e478dbdc760b5d73e6eb82fff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ffa028252414b33e478dbdc760b5d73e6eb82fff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181011/f25cfa0d/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list