UbuntuUpdates.org

Package "giflib"

Name: giflib

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • library for GIF images (utilities)

Latest version: 5.1.4-3ubuntu0.1
Release: disco (19.04)
Level: updates
Repository: universe

Links

Save this URL for the latest version of "giflib": https://www.ubuntuupdates.org/giflib



Other versions of "giflib" in Disco

Repository Area Version
base main 5.1.4-3
base universe 5.1.4-3
security main 5.1.4-3ubuntu0.1
security universe 5.1.4-3ubuntu0.1
updates main 5.1.4-3ubuntu0.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.1.4-3ubuntu0.1 2019-08-20 17:07:24 UTC

  giflib (5.1.4-3ubuntu0.1) disco-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-11490.patch: adding checks
      in DGifDecompressLine in order to avoid a heap buffer overflow and
      a denial of service in lib/dgif_lib.c.
    - CVE-2018-11490
  * SECURITY UPDATE: Divide-by-zero
    - debian/patches/CVE-2019-15133.patch: adding checks bounds
      in lib/dgif_lib.c.
    - CVE-2019-15133

 -- <email address hidden> (Leonidas S. Barbosa) Mon, 19 Aug 2019 15:46:34 -0300

CVE-2018-11490 The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer
CVE-2019-15133 In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height f



About   -   Send Feedback to @ubuntu_updates