Debian Package Tracker

From: Emilio Pozuelo Monfort <pochu@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted gimp 2.8.2-2+deb7u3 (source all amd64) into oldoldstable
Date: Sat, 23 Dec 2017 16:50:30 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 23 Dec 2017 14:34:37 +0100
Source: gimp
Binary: libgimp2.0 gimp gimp-data libgimp2.0-dev libgimp2.0-doc gimp-dbg
Architecture: source all amd64
Version: 2.8.2-2+deb7u3
Distribution: wheezy-security
Urgency: medium
Maintainer: Ari Pollak <ari@debian.org>
Changed-By: Emilio Pozuelo Monfort <pochu@debian.org>
Description: 
 gimp       - The GNU Image Manipulation Program
 gimp-data  - Data files for GIMP
 gimp-dbg   - Debugging symbols for GIMP
 libgimp2.0 - Libraries for the GNU Image Manipulation Program
 libgimp2.0-dev - Headers and other files for compiling plugins for GIMP
 libgimp2.0-doc - Developers' Documentation for the GIMP library
Changes: 
 gimp (2.8.2-2+deb7u3) wheezy-security; urgency=medium
 .
   * CVE-2017-17784: Head buffer overread while parsing crafted GBR files.
   * CVE-2017-17785: Heap buffer overwrite while parsing crafted FLI files.
   * CVE-2017-17786: Head buffer overread while parsing crafted TGA files.
   * CVE-2017-17787: Head buffer overread while parsing crafted PSP files.
   * CVE-2017-17788: Head buffer overread while parsing crafted XCF files.
   * CVE-2017-17789: Heap buffer overwrite while parsing crafted PSP files.
Checksums-Sha1: 
 a4b81cdd6a84343ea8f7166a32711208df2e3e7b 3143 gimp_2.8.2-2+deb7u3.dsc
 64ad90cedc5e8e348310b6eb6b7821ec110c0886 20161424 gimp_2.8.2.orig.tar.bz2
 27cbf09e6264a2c48844756992280ca646d00371 53517 gimp_2.8.2-2+deb7u3.debian.tar.gz
 87aae4a8f084ea13fd32c244d6b55f72b485da55 8118846 gimp-data_2.8.2-2+deb7u3_all.deb
 65aae2b5bb7a66ac9c79b6f66d68bb7a2e4759ce 1144620 libgimp2.0-doc_2.8.2-2+deb7u3_all.deb
 a04a1b7dad034efc36b0a6c1d135dbfeafaf4727 1555206 libgimp2.0_2.8.2-2+deb7u3_amd64.deb
 bb3d3a89963f8f4ccd97606da019f2f0f92f088a 4240954 gimp_2.8.2-2+deb7u3_amd64.deb
 ccebc7194c8d785c25ab96c97f7e35fba4bc8b1f 886634 libgimp2.0-dev_2.8.2-2+deb7u3_amd64.deb
 5ed0ddaaa2b88a40dbbc05097583bdafb48b0480 13376468 gimp-dbg_2.8.2-2+deb7u3_amd64.deb
Checksums-Sha256: 
 42b51899021d328a60afacd42aa897bc5e48c8a7fdd08f2a2319c80e686f9cda 3143 gimp_2.8.2-2+deb7u3.dsc
 0cd1a7e67e132ead810e16e31ff929394c83fcf841e4a295c45d6f3829601ad9 20161424 gimp_2.8.2.orig.tar.bz2
 faa4f4d7da089c3932b9b988a6e90cd6708d2c64fa51f1c985b2b7c0d12e17cd 53517 gimp_2.8.2-2+deb7u3.debian.tar.gz
 40d3ca4cff5622dbc867963dc686a973d030b538e8c2638ef5e76b6a48510637 8118846 gimp-data_2.8.2-2+deb7u3_all.deb
 e87e725ed951713162c097756ce6794613533fb6d2b26fa40c0d6586446a2707 1144620 libgimp2.0-doc_2.8.2-2+deb7u3_all.deb
 840e38743a50d27346015cf4c262323d77a89c77badf976ceadaa9b13e3c9f44 1555206 libgimp2.0_2.8.2-2+deb7u3_amd64.deb
 f294951061c3d6e56143b0dc1d9ef818be029cdaeb0d18c881742de0f5796190 4240954 gimp_2.8.2-2+deb7u3_amd64.deb
 86c96752b87ad7b0507b9ba647940cc8a9b61dd0530ac4dc6b3be5eb11dd2286 886634 libgimp2.0-dev_2.8.2-2+deb7u3_amd64.deb
 3108b2f3ff2c41f57be9b80c84aa5759ac07cd4804c4e69be81d7102b88aef25 13376468 gimp-dbg_2.8.2-2+deb7u3_amd64.deb
Files: 
 8e5bb43248b7f29a1b720d23f23208de 3143 graphics optional gimp_2.8.2-2+deb7u3.dsc
 b542138820ca3a41cbd63fc331907955 20161424 graphics optional gimp_2.8.2.orig.tar.bz2
 c6c606dcd92ad09f82d26a890bcffe7e 53517 graphics optional gimp_2.8.2-2+deb7u3.debian.tar.gz
 0e9cc366fcb71724ccecde75b3b179d3 8118846 graphics optional gimp-data_2.8.2-2+deb7u3_all.deb
 b3e8c1fa161d940a977ddaf5eb8ca0ed 1144620 doc optional libgimp2.0-doc_2.8.2-2+deb7u3_all.deb
 377794d091d7219261d5ddad8b91eda4 1555206 libs optional libgimp2.0_2.8.2-2+deb7u3_amd64.deb
 023d562784e08cb43b8115ec0901aadb 4240954 graphics optional gimp_2.8.2-2+deb7u3_amd64.deb
 60bebdb36ed4f26f57cf07b722ca68e4 886634 libdevel optional libgimp2.0-dev_2.8.2-2+deb7u3_amd64.deb
 a2f37b9c3c68ffff13f15dd82933c6ac 13376468 debug extra gimp-dbg_2.8.2-2+deb7u3_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=jDoD
-----END PGP SIGNATURE-----
News for package gimp
