Univention Bugzilla – Bug 55473
giflib: Multiple issues (5.0)
Last modified: 2022-12-07 17:57:55 CET
New Debian giflib 5.1.4-3+deb10u1 fixes: This update addresses the following issues: * heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c (CVE-2018-11490) * divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c (CVE-2019-15133)
--- mirror/ftp/pool/main/g/giflib/giflib_5.1.4-3.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/giflib_5.1.4-3+deb10u1.dsc @@ -1,3 +1,8 @@ +5.1.4-3+deb10u1 [Fri, 02 Dec 2022 16:08:36 +0100] Helmut Grohne <helmut@subdivi.de>: + + * Non-maintainer upload by the LTS team. + * Fix CVE-2018-11490 (Closes: #904114), CVE-2019-15133 + 5.1.4-3 [Tue, 05 Jun 2018 20:58:51 +0200] Salvatore Bonaccorso <carnil@debian.org>: * QA upload. <http://piuparts.knut.univention.de/5.0-2/#4577206486631326460>
OK: yaml OK: announce_errata OK: patch OK: piuparts
<https://errata.software-univention.de/#/?erratum=5.0x506>