-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 19 May 2016 18:39:57 +0100 Source: libgd2 Binary: libgd-tools libgd2-xpm-dev libgd2-noxpm-dev libgd2-xpm libgd2-noxpm Architecture: source amd64 Version: 2.0.36~rc1~dfsg-6.1+deb7u3 Distribution: wheezy-security Urgency: high Maintainer: GD team <pkg-gd-devel@lists.alioth.debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: libgd-tools - GD command line tools and example code libgd2-noxpm - GD Graphics Library version 2 (without XPM support) libgd2-noxpm-dev - GD Graphics Library version 2 (development version) libgd2-xpm - GD Graphics Library version 2 libgd2-xpm-dev - GD Graphics Library version 2 (development version) Closes: 824627 Changes: libgd2 (2.0.36~rc1~dfsg-6.1+deb7u3) wheezy-security; urgency=high . * CVE-2015-8874: Stack consumption vulnerability in GD in PHP before 5.6.12 allows remote attackers to cause a denial of service via a crafted imagefilltoborder call. (Closes: #824627) Checksums-Sha1: 9b8ad5385f72c2d006d2a1edcde22b19b406f86e 2411 libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.dsc e93c43f3c2283c6fe09793ac06a4a106374e0cb3 761899 libgd2_2.0.36~rc1~dfsg.orig.tar.gz 7d1acbaa9db38349b4d9e22fa0980ba6e2756aad 27906 libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.debian.tar.gz 626d133e6d999c62a8be60f4dea89729ef6445cc 171698 libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb cbd7faa1405ab8e08fa3c12288afeb5f4c6f9b83 376236 libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb eaed0bfa3a23679849c24ea9749ccc88e6d7a005 373794 libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 76668a4b9199f09a021a6808e1b8a94d19f28cfb 234982 libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 1b9dbb85440d2c2df892f44e480f6ce50434a06b 232490 libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb Checksums-Sha256: 472ce63550c3e608f1a17050c6acb748ce2a78168137aa98f1694d356c80f5eb 2411 libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.dsc 919df21310ad4a8b6155df01411138110589cc6c50b1bc414dc62aebb0a7f41a 761899 libgd2_2.0.36~rc1~dfsg.orig.tar.gz 8ab7c4873761924f92e32e5edabbe0266268852dc5f5eb9921861870286af22a 27906 libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.debian.tar.gz 7a3af946d93c02b2851954ed7dffc491dc9fca675a681dafb5732a1d0b8ac4cd 171698 libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 6854a60198ff34cd76cd9d93c7527d3ede143ea391596ba0e312c58d6c7a2764 376236 libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb ab19f26345e3b31cde9bb9d1d18705bec7299df2aafb72816d3e3cc39829771b 373794 libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb babb7516516dc4f4ea2286339a5c5d80359891ed2c533ecc84d4a3d9a915a882 234982 libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 2da6e78c3f7ac69932effbec1e721548402461919ebaeb55d467a53b8a202618 232490 libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb Files: 3fdcac6e3fa2db7b21745fe41a94cb33 2411 graphics optional libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.dsc 0f4d2fa45627af0e87fcb74f653b66dd 761899 graphics optional libgd2_2.0.36~rc1~dfsg.orig.tar.gz 934fddc0d12e164b42033bf5b6b9a347 27906 graphics optional libgd2_2.0.36~rc1~dfsg-6.1+deb7u3.debian.tar.gz b52b55e6fe943e019275257689783673 171698 graphics optional libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 4196e84a270ed7b572ecdbdeadefb836 376236 libdevel optional libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb a6b5f3c99899f9e4689b08fad8929cb3 373794 libdevel optional libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb cc552582b88ca8fde7cd78064e642278 234982 libs optional libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb 9d2497d39a0d57eed5e10c2c597acbbd 232490 libs optional libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJXPf26AAoJEB6VPifUMR5Y3l0QAK6fC1cMTwW1gZug/j6MJ28A UC5TvEedEwZMQMFK32P653BcVsbCWl87w/h8nwke31WGNj4tSrajF88RvSOTbVEK J26p8SngAphs6Ip+jnhouX13d/Wfcm1UV8pKEx15MkobNAA/RkJXQGd1mGY6TmQS /66UbeyCn2fNYMZRgpH2Jd+z+SBjqAzmyl95DnlRNpJuxCVAuzPHbIH8hb8rLYjD x9KiXFRBqLMKPpOuy3cXtToXvU0Xg5IuwfUmlc6FgQklgVXEWbUw5I5RM1MNX/fA RxdPhsYH6F8MOy5q4JPD8EUjcv3XWXviXAGUWd+eqeqrbgZCNyg6KfmFpHdUooDD uCFA3bHvD0wU873oQ4eL1gfEMuNikjLBf9K4vhXJKS3Zm5nhMYK5ie7wXDRXJIdZ v4I98alWEc7tdFtGodok+BheGZLxjVMeJnB0Vm2/VgEmvci06cs7oOkYei+JGgXv Z+4zy1MSS/k38vwByojYcatq+YzSgielNlR8MAGGBs3dHHRqKqHYNRLfkq5jLycg cZlk4W9rDuC4U2tucNRIsVp3Mcx/XxRDoAwaEm3wr85tuA/uYzIbprwKTkzRyEhD ORupLjwbq/GfEFlqFrt6SjgKIUVTlDsodq3eNy+M2WaYFPH8Kzk6DCoXkaLfdHPl fJ7spaAj8j0aavqAXzX+ =TfiY -----END PGP SIGNATURE-----