ELSA-2020-4659

ULN >
Oracle Linux Errata repository >
ELSA-2020-4659

ELSA-2020-4659 - gd security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-11-10

Description

* Fri Mar 27 2020 fjanus@redhat.com - 2.2.5-7
- Fix CVE-2018-14553 - Potential Null pointer dereference in gdImageClone
Resolves: RHBZ#1811788
- Fixed heap based buffer overflow in gd_color_match.c:gdImageColorMatch() in libgd as used in imagecolormatch()
Resolves: RHBZ#1678104 (CVE-2019-6977)
- Fixed potential double-free in gdImage*Ptr()
Resolves: RHBZ#1679002 (CVE-2019-6978)

Related CVEs

CVE-2018-14553

CVE-2019-6977

CVE-2019-6978

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	gd-2.2.5-7.el8.src.rpm	6325169909185f4ec2f086b103ed7e7ab3ce567aa5bf29a4eafee30b5e048831	-	ol8_aarch64_appstream
	gd-2.2.5-7.el8.src.rpm	6325169909185f4ec2f086b103ed7e7ab3ce567aa5bf29a4eafee30b5e048831	-	ol8_aarch64_appstream_developer
	gd-2.2.5-7.el8.aarch64.rpm	25109b20d9dfdef2ff7952e098467fe33678cfb7294a336862c15d0c43c747c2	-	ol8_aarch64_appstream
	gd-2.2.5-7.el8.aarch64.rpm	25109b20d9dfdef2ff7952e098467fe33678cfb7294a336862c15d0c43c747c2	-	ol8_aarch64_appstream_developer
	gd-devel-2.2.5-7.el8.aarch64.rpm	92e5654e2e987367cd9ff92b79a55ab8284bef711caebed29c8d18ab06f461f0	-	ol8_aarch64_appstream
	gd-devel-2.2.5-7.el8.aarch64.rpm	92e5654e2e987367cd9ff92b79a55ab8284bef711caebed29c8d18ab06f461f0	-	ol8_aarch64_appstream_developer

Oracle Linux 8 (x86_64)	gd-2.2.5-7.el8.src.rpm	6325169909185f4ec2f086b103ed7e7ab3ce567aa5bf29a4eafee30b5e048831	-	ol8_x86_64_appstream
	gd-2.2.5-7.el8.src.rpm	6325169909185f4ec2f086b103ed7e7ab3ce567aa5bf29a4eafee30b5e048831	-	ol8_x86_64_appstream_developer
	gd-2.2.5-7.el8.i686.rpm	a7bdf954fd529fa7324581b59cd70f26ccc7122d740bd6ae3e91325a2a9a1c9a	-	ol8_x86_64_appstream
	gd-2.2.5-7.el8.i686.rpm	a7bdf954fd529fa7324581b59cd70f26ccc7122d740bd6ae3e91325a2a9a1c9a	-	ol8_x86_64_appstream_developer
	gd-2.2.5-7.el8.x86_64.rpm	c247c88c03d54c7181d1204f4391d4f07116680eae30f8d6c605da304578c056	-	ol8_x86_64_appstream
	gd-2.2.5-7.el8.x86_64.rpm	c247c88c03d54c7181d1204f4391d4f07116680eae30f8d6c605da304578c056	-	ol8_x86_64_appstream_developer
	gd-devel-2.2.5-7.el8.i686.rpm	26cb0a0505ed02963a039cd4e82525299990003ae3963cd7de26872f2cdeb474	-	ol8_x86_64_appstream
	gd-devel-2.2.5-7.el8.i686.rpm	26cb0a0505ed02963a039cd4e82525299990003ae3963cd7de26872f2cdeb474	-	ol8_x86_64_appstream_developer
	gd-devel-2.2.5-7.el8.x86_64.rpm	e41c4fa4020d61eefdc74ce7eff1fd0be6b1e593389f5906e8df157ec014e2d6	-	ol8_x86_64_appstream
	gd-devel-2.2.5-7.el8.x86_64.rpm	e41c4fa4020d61eefdc74ce7eff1fd0be6b1e593389f5906e8df157ec014e2d6	-	ol8_x86_64_appstream_developer

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691