Debian Package Tracker

From: Michael Fedrowitz <michaelf@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted libungif4 4.1.3-4 (source i386)
Date: Fri, 11 Nov 2005 14:32:09 -0800
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 11 Nov 2005 23:07:09 +0100
Source: libungif4
Binary: libungif4-dev libungif4g libungif-bin
Architecture: source i386
Version: 4.1.3-4
Distribution: unstable
Urgency: low
Maintainer: Michael Fedrowitz <michaelf@debian.org>
Changed-By: Michael Fedrowitz <michaelf@debian.org>
Description: 
 libungif-bin - programs to convert GIF images
 libungif4-dev - shared library for GIF images (development files)
 libungif4g - shared library for GIF images (runtime lib)
Closes: 337972
Changes: 
 libungif4 (4.1.3-4) unstable; urgency=low
 .
   * Applied security patch from Ubuntu (thanks to Martin Pitt):
     * SECURITY UPDATE: Arbitrary code execution with crafted GIF files.
     * lib/dgif_lib.c:
       - Fix NULL dereference crash with crafted LZW termination blocks.
       - CVE-2005-2974
     * lib/dgif_lib.c, lib/egif_lib.c, lib/gifalloc.c:
       - Fix multiple buffer overflows with crafted GIF files, possibly
         exploitable:
       - CVE-2005-3350
     (closes: #337972)
Files: 
 415b19d64f48bb3edad0412aa3bef069 622 graphics optional libungif4_4.1.3-4.dsc
 b50ae9fe3259b890f5bfc324073f5680 136502 graphics optional libungif4_4.1.3-4.diff.gz
 0350ffa29949f033596eb3dda1969790 55744 libs optional libungif4g_4.1.3-4_i386.deb
 336385f55c184d44a6b5309ed1b228ee 39004 libdevel optional libungif4-dev_4.1.3-4_i386.deb
 6bfd070ebd300ade002069da8250db6f 187996 graphics optional libungif-bin_4.1.3-4_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDdRcivpyGjQRgTrgRAh1YAJ9coi5QMtDxelH8/P0Uz1xhSxYimACgkFZn
SCGJKkiEsqzi9nvG8iYqW5s=
=cq+k
-----END PGP SIGNATURE-----


Accepted:
libungif-bin_4.1.3-4_i386.deb
  to pool/main/libu/libungif4/libungif-bin_4.1.3-4_i386.deb
libungif4-dev_4.1.3-4_i386.deb
  to pool/main/libu/libungif4/libungif4-dev_4.1.3-4_i386.deb
libungif4_4.1.3-4.diff.gz
  to pool/main/libu/libungif4/libungif4_4.1.3-4.diff.gz
libungif4_4.1.3-4.dsc
  to pool/main/libu/libungif4/libungif4_4.1.3-4.dsc
libungif4g_4.1.3-4_i386.deb
  to pool/main/libu/libungif4/libungif4g_4.1.3-4_i386.deb


-- 
To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
News for package libungif4
