Debian Package Tracker

From: Hugo Lefeuvre <hle@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted libsdl2-image 2.0.0+dfsg-3+deb8u2 (source amd64) into oldoldstable
Date: Mon, 22 Jul 2019 18:40:13 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 20 Jul 2019 16:05:46 -0300
Source: libsdl2-image
Binary: libsdl2-image-2.0-0 libsdl2-image-dbg libsdl2-image-dev
Architecture: source amd64
Version: 2.0.0+dfsg-3+deb8u2
Distribution: jessie-security
Urgency: medium
Maintainer: Debian SDL packages maintainers <pkg-sdl-maintainers@lists.alioth.debian.org>
Changed-By: Hugo Lefeuvre <hle@debian.org>
Description:
 libsdl2-image-2.0-0 - Image loading library for Simple DirectMedia Layer 2, libraries
 libsdl2-image-dbg - Image loading library for Simple DirectMedia Layer 2, debugging s
 libsdl2-image-dev - Image loading library for Simple DirectMedia Layer 2, development
Changes:
 libsdl2-image (2.0.0+dfsg-3+deb8u2) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * CVE-2018-3977: buffer overflow in do_layer_surface (IMG_xcf.c).
   * CVE-2019-5052: integer overflow and subsequent buffer overflow in IMG_pcx.c.
   * CVE-2019-7635: heap buffer overflow in Blit1to4 (IMG_bmp.c).
   * CVE-2019-12216, CVE-2019-12217,
     CVE-2019-12218, CVE-2019-12219,
     CVE-2019-12220, CVE-2019-12221,
     CVE-2019-12222: OOB R/W in IMG_LoadPCX_RW (IMG_pcx.c).
Checksums-Sha1:
 1b248c08e24f66dfb3365ba42487a4077019403d 2185 libsdl2-image_2.0.0+dfsg-3+deb8u2.dsc
 8dd4f7a28d4ad5f29adc857c80e24797753f8451 10856 libsdl2-image_2.0.0+dfsg-3+deb8u2.debian.tar.xz
 ceba00cd143d7e66e8c2b7944940c5fd6d936903 45702 libsdl2-image-2.0-0_2.0.0+dfsg-3+deb8u2_amd64.deb
 33e41059fc6dc91de7f28e2fe840b781596ec84f 90926 libsdl2-image-dbg_2.0.0+dfsg-3+deb8u2_amd64.deb
 f346c39deb0f98a2016bb4fa521abb573cd94950 49582 libsdl2-image-dev_2.0.0+dfsg-3+deb8u2_amd64.deb
Checksums-Sha256:
 2a1a852aa36ef28cc634fd4d2b3c224eb3aea20add50abbebfe225ac0bebd8fe 2185 libsdl2-image_2.0.0+dfsg-3+deb8u2.dsc
 74759f093dd07bc301704b2b0a9e1ce6e9c0f392f05bc799bdf5c984a1fbcda0 10856 libsdl2-image_2.0.0+dfsg-3+deb8u2.debian.tar.xz
 f2b363e9acf6158ef9bc3a83373b1ad17950bef7d4ef98d71349c6e7219308b1 45702 libsdl2-image-2.0-0_2.0.0+dfsg-3+deb8u2_amd64.deb
 0fdfcd28c9ace70d1e7fb695cd1a9b1109b480e99d0046a9197710bd4c05d8bf 90926 libsdl2-image-dbg_2.0.0+dfsg-3+deb8u2_amd64.deb
 ab5d82f83e3937c098f221a7e7f3fb8d8f6828dc5935265dd9f52d944a89516e 49582 libsdl2-image-dev_2.0.0+dfsg-3+deb8u2_amd64.deb
Files:
 f375838402c670c5300bb5fce95d8270 2185 libs optional libsdl2-image_2.0.0+dfsg-3+deb8u2.dsc
 4201fd9d0e002e7aafd87638670d36cf 10856 libs optional libsdl2-image_2.0.0+dfsg-3+deb8u2.debian.tar.xz
 c466fe7d88e4fc5074b0993f0bd3d344 45702 libs optional libsdl2-image-2.0-0_2.0.0+dfsg-3+deb8u2_amd64.deb
 04c0525b5974079e7229f5c7e7c9518f 90926 debug extra libsdl2-image-dbg_2.0.0+dfsg-3+deb8u2_amd64.deb
 3a43b62e4972adc7ee3d5e6f844805ac 49582 libdevel optional libsdl2-image-dev_2.0.0+dfsg-3+deb8u2_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=VCHZ
-----END PGP SIGNATURE-----
News for package libsdl2-image
