-
Committer:
Package Import Robot
-
Author(s):
Steve Beattie
-
Date:
2015-10-08 13:33:31 UTC
-
Revision ID:
package-import@ubuntu.com-20151008133331-mgn8z3imz1smy0xw
Tags: 2.31.3-1ubuntu0.2
* SECURITY UPDATE: Heap overflow and DoS with tga files
- debian/patches/CVE-2015-7673-1.patch: pass on OOM conditions in
make_weights functions in gdk-pixbuf/pixops/pixops.c
- debian/patches/CVE-2015-7673-2.patch: Wrap TGAColormap struct in
its own API in gdk-pixbuf/io-tga.c
- debian/patches/CVE-2015-7673-3.patch: always parse colormaps in
gdk-pixbuf/io-tga.c
* SECURITY UPDATE: heap overflow when scaling GIF images
- debian/patches/CVE-2015-767.patch: ensure variables are large
enough when shifting bits in gdk-pixbuf/pixops/pixops.c