-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 07 Feb 2008 20:31:46 +0100 Source: netpbm-free Binary: netpbm libnetpbm10 libnetpbm10-dev libnetpbm9 libnetpbm9-dev Architecture: source i386 Version: 2:10.0-11.1 Distribution: unstable Urgency: high Maintainer: Andreas Barth <aba@not.so.argh.org> Changed-By: Nico Golde <nion@debian.org> Description: libnetpbm10 - Shared libraries for netpbm libnetpbm10-dev - Development libraries and header files libnetpbm9 - Shared libraries for netpbm libnetpbm9-dev - Development libraries and header files netpbm - Graphics conversion tools Closes: 464056 Changes: netpbm-free (2:10.0-11.1) unstable; urgency=high . * Non-maintainer upload by security team. * This update addresses the following security issue: - CVE-2008-0554: The readImageData function in giftopnm.c does not properly check the upper bound of a fixed size array leading to a buffer overflow and possibly code execution (Closes: #464056). Files: ae3a531cc84b21dcd60db88a02ae7767 743 graphics optional netpbm-free_10.0-11.1.dsc a4ad8a540d0861d518721e8747621f40 50716 graphics optional netpbm-free_10.0-11.1.diff.gz 2bdecf771439e63d3ee954fbb25fa127 1202384 graphics optional netpbm_10.0-11.1_i386.deb 0b81be609bfe60385368c5c4f9ecb037 64660 libs optional libnetpbm10_10.0-11.1_i386.deb 9c791b55b01df4d4b428c4312e2c1d4a 110228 libdevel optional libnetpbm10-dev_10.0-11.1_i386.deb d0f0b480d27b56ec7a9ddd90a02a707d 70782 libs optional libnetpbm9_10.0-11.1_i386.deb 97c29a7c735b5c10743ee26c7d01578a 109842 libdevel optional libnetpbm9-dev_10.0-11.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHq3LWHYflSXNkfP8RAmlSAJ9dS1setE+vBNw9Wk3+o5e5zKrhRQCeI8gl /OiYfWIlKMpKig+ODRdUY+4= =aj2E -----END PGP SIGNATURE----- Accepted: libnetpbm10-dev_10.0-11.1_i386.deb to pool/main/n/netpbm-free/libnetpbm10-dev_10.0-11.1_i386.deb libnetpbm10_10.0-11.1_i386.deb to pool/main/n/netpbm-free/libnetpbm10_10.0-11.1_i386.deb libnetpbm9-dev_10.0-11.1_i386.deb to pool/main/n/netpbm-free/libnetpbm9-dev_10.0-11.1_i386.deb libnetpbm9_10.0-11.1_i386.deb to pool/main/n/netpbm-free/libnetpbm9_10.0-11.1_i386.deb netpbm-free_10.0-11.1.diff.gz to pool/main/n/netpbm-free/netpbm-free_10.0-11.1.diff.gz netpbm-free_10.0-11.1.dsc to pool/main/n/netpbm-free/netpbm-free_10.0-11.1.dsc netpbm_10.0-11.1_i386.deb to pool/main/n/netpbm-free/netpbm_10.0-11.1_i386.deb