-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 16 Oct 2017 17:54:05 -0400 Source: sdl-image1.2 Binary: libsdl-image1.2 libsdl-image1.2-dev Architecture: source amd64 Version: 1.2.12-2+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian SDL packages maintainers <pkg-sdl-maintainers@lists.alioth.debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: libsdl-image1.2 - Image loading library for Simple DirectMedia Layer 1.2, libraries libsdl-image1.2-dev - Image loading library for Simple DirectMedia Layer 1.2, developme Closes: 878267 Changes: sdl-image1.2 (1.2.12-2+deb7u1) wheezy-security; urgency=high . * CVE-2017-2887: Prevent a buffer overflow vulnerability in the XCF property handling functionality. A specially crafted file could cause a stack-based buffer overflow resulting in potential code execution. (Closes: #878267) Checksums-Sha1: 89822121d193e35000b6cc78e59e9d0f966e6f9c 2291 sdl-image1.2_1.2.12-2+deb7u1.dsc 5e3e393d4e366638048bbb10d6a269ea3f4e4cf2 2231074 sdl-image1.2_1.2.12.orig.tar.gz e3f2f878045bd69d507191183995e53524416c95 7378 sdl-image1.2_1.2.12-2+deb7u1.debian.tar.gz a5a343284cf6a46500bb3d2a3ae2c328b65bb459 38134 libsdl-image1.2_1.2.12-2+deb7u1_amd64.deb e993a4a1bbd723fa31ad6eac011024559f55b28d 43350 libsdl-image1.2-dev_1.2.12-2+deb7u1_amd64.deb Checksums-Sha256: 25f5bdb9fca3b1f87c6889dd0cbc20ef2750ca97bf674e6781c411af15c3ea72 2291 sdl-image1.2_1.2.12-2+deb7u1.dsc 0b90722984561004de84847744d566809dbb9daf732a9e503b91a1b5a84e5699 2231074 sdl-image1.2_1.2.12.orig.tar.gz 095b86a685b7fd5c3ce20c1bc8e89e1a871abb429b1766a2119673c66565515b 7378 sdl-image1.2_1.2.12-2+deb7u1.debian.tar.gz edbe696c5c13fd7231bef688f5b6eda14224a2e14866b9a29d8eca6e7aae4ead 38134 libsdl-image1.2_1.2.12-2+deb7u1_amd64.deb eee002c2dd1e4a03f3b8416f77ac70511a7b59a6dde14e39e282f885c632b3e7 43350 libsdl-image1.2-dev_1.2.12-2+deb7u1_amd64.deb Files: 46875b66d55865c7d5417aaa25c89b50 2291 libs optional sdl-image1.2_1.2.12-2+deb7u1.dsc a0f9098ebe5400f0bdc9b62e60797ecb 2231074 libs optional sdl-image1.2_1.2.12.orig.tar.gz 1b7f3390e39709acf3d302864dcf6faa 7378 libs optional sdl-image1.2_1.2.12-2+deb7u1.debian.tar.gz 6fddf922d95d9564ba9c0d71a5931012 38134 libs optional libsdl-image1.2_1.2.12-2+deb7u1_amd64.deb f3c64fe6d7da9e967c17b65be5ae65bf 43350 libdevel optional libsdl-image1.2-dev_1.2.12-2+deb7u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlnlLA0ACgkQHpU+J9Qx Hlho7A/+Pab4XJgnkYeJlaxSc99lsExL3g1RqZUd8EV0wrha5scxKsQErUN400dx HXMGjjLV8yi+jBWPgHBQ1Tt3CIVyX/ppiVTJF2lZdV2JER6fyEWABSrk3m3icjzd MUboxVpykfNvYuP2cyqj+IAwkyRO0AVZqoSpnbEUxJRZS4DlMnrJ77sICkOP1JAQ 8nqV8wjuBdsqi7mvOse1YsE0+u4Z4SAsWln187BVleflzSuyeT45UP8cYRw33F9k BLIy4v3LhF8St6dxTA7ULqrQII5XDhS8OZhC8aIiDqm0ApgOfZC6D/Nwe/q5rH0z vDga16ZYKbYNCKyLZcxAQz3NNp8ax0o4cOodjcBhAL0NHKGMceyM0ltzswsRjSo2 zVWGtH1AS7bRJsEPFbL4A6ZJuuHyq4O8YxCFFpUJCCJIBygKqvpFV+//WEME9QaB cSeOeN74Dc+WuMoLHdgOL2JsrRDh/fZw1lHDLi4RH/96dTXeRt0UXzmdhJUiPgWu lNlp7TEJKbIA8pFeVDRsZumi83VjKxNsNboKJN8SwaEcHFv4bSqqmvJ4P3SZGbBv HM3MXlfSmgJwp88LMJcy1s8Q1sQHHOU4cLYjsebg9xVBBhvFWQmmw9hoeOCihxdi LRMTs1nIcsOQwNiKJcCy7TRL/dJqKC1n2AWi5J1g0YtjrDyNCnI= =znvc -----END PGP SIGNATURE-----
