-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 28 Jun 2016 18:10:57 +0200 Source: libgd2 Binary: libgd-tools libgd2-xpm-dev libgd2-noxpm-dev libgd2-xpm libgd2-noxpm Architecture: source i386 Version: 2.0.36~rc1~dfsg-6.1+deb7u4 Distribution: wheezy-security Urgency: high Maintainer: GD team <pkg-gd-devel@lists.alioth.debian.org> Changed-By: Thorsten Alteholz <debian@alteholz.de> Description: libgd-tools - GD command line tools and example code libgd2-noxpm - GD Graphics Library version 2 (without XPM support) libgd2-noxpm-dev - GD Graphics Library version 2 (development version) libgd2-xpm - GD Graphics Library version 2 libgd2-xpm-dev - GD Graphics Library version 2 (development version) Changes: libgd2 (2.0.36~rc1~dfsg-6.1+deb7u4) wheezy-security; urgency=high . * Non-maintainer upload by the Wheezy LTS Team. * CVE-2016-5766 Integer Overflow in _gd2GetHeader() resulting in heap overflow. Checksums-Sha1: b4916f872f78e59f46e82e85d6c4c6dea990e098 2541 libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.dsc e93c43f3c2283c6fe09793ac06a4a106374e0cb3 761899 libgd2_2.0.36~rc1~dfsg.orig.tar.gz f7b96d87f2e551a2e79b6b532f1b395c0339c535 28340 libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.debian.tar.gz baf3e93ba80843bff95c6bf0556cd735c75e20cc 167286 libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb ed5db996b87f0fe368a6f275b55ce41dfd0b9d66 369346 libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 090d60c1c5edfded8bf0f756ce0abdbb04c90e90 367776 libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 408aabe0ea4c0cbd7e9b8881dfd175a25f690c66 232418 libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 80cde47bb86486a4d4da1fd50aeda40a722739f5 229104 libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb Checksums-Sha256: 5501f81d1b8b11342af8f1621a5d46c1f96e3e98d39c3ce7a55fab8155b77239 2541 libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.dsc 919df21310ad4a8b6155df01411138110589cc6c50b1bc414dc62aebb0a7f41a 761899 libgd2_2.0.36~rc1~dfsg.orig.tar.gz 8c68210d6f731ab3cb2421957966731922fc357de8643bdec007fd3e200160c0 28340 libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.debian.tar.gz 5c0bb653453ff4608cc48fc4ed36005716c2933f678592433b7a6eaa3fc12f8a 167286 libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 45391b3ead0a0bffd49b791d961d4dc114a7dde796b1983a61c579581f06b471 369346 libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb e1814b439a433c8e575576e80525841f49bd4d163f529831ecedc6f31cc8d26e 367776 libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 2a5d08e390d4a79464ba338b236d147862ac85be394aacdec81b3aec47bae0de 232418 libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 6b5c17839ffeb960cb6f29d8de138d2d187d68abc45d7cee8d54ab3cabd90d1e 229104 libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb Files: 8f44f7ced226c4c65494fdae970a5a50 2541 graphics optional libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.dsc 0f4d2fa45627af0e87fcb74f653b66dd 761899 graphics optional libgd2_2.0.36~rc1~dfsg.orig.tar.gz 11762509ddbf48d0b69d478717ecb9aa 28340 graphics optional libgd2_2.0.36~rc1~dfsg-6.1+deb7u4.debian.tar.gz 0f226bd1c8c954ffbc102bd725a56182 167286 graphics optional libgd-tools_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb cfd23954a1402d38788ef661a1d55394 369346 libdevel optional libgd2-xpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb 122f09a45408ea7142337b9c274d67b3 367776 libdevel optional libgd2-noxpm-dev_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb cdbfc8fb7e82069d27ccb27dd20f2577 232418 libs optional libgd2-xpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb d6a076ffb95f60b584f3f4bd0a24c994 229104 libs optional libgd2-noxpm_2.0.36~rc1~dfsg-6.1+deb7u4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQJ8BAEBCgBmBQJXdBFWXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5 NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHt/8QAK2OZZ+SxMAWaz+NJ5OJ/TfN 71eed5HGYpaezZrRJ5lRbxZoP0c1UlS1x0UAZGAnBBVfOA/IUWM2Nau40Aaauxh5 JI5mmUfx0vJ5RMdvOoti1OKO1XKTzVRlUdX0ZEhVWvgKY5QlOjYk2xJq6VCy389g EAgkHHWcrGriY9Rs1/SYl9LFsZh3rDLZD+te+hUUkixd3mj6keo+ScUAzogeEioa SRa1VeNWLhr9cHP+AP1B1lRXM+bqnUFW2HxKWplrLrJ85lzmxyYvZ4HPof4gRQm/ ITVZp0eQsMM8li7XadD6B0sf3ZTumwmQAVYF5iMhozZ8985Im6/XBAbs9WDjycdo zDb9T4gyIxrL1cYhJZydFXEvmS9Npo1Y0RxNzbCtqQxkMe47Y+JIe6XDLglpBocv n0iAdD1LikfNehlsaJ7P9Rvd6rBqYqvpEu/KdermcfsoRHocVaV8Wem8hBzMKI+p l2n21kv/F417+oU6DLfd+9i+K40p9LU99VmltZ2t+pl/6d7Qzq+/W36XiSDmtwji K/supw2gRXn1nD/XEZSAAGdMxzwle/+HILhBbbjxU3rss0xyQacvuFk0VlFyMcBH MrWArXP6qrhike/Fokvvi+QHoAmtf6NQGsxJJWIPN/+scu4cA/BAwvoSCiT9w+4q LbbZHOa915Oy76SSPcrl =6zxO -----END PGP SIGNATURE-----