ELSA-2020-4659

ELSA-2020-4659 - gd security update

Type:SECURITY
Severity:MODERATE
Release Date:2020-11-10

Description


* Fri Mar 27 2020 fjanus@redhat.com - 2.2.5-7
- Fix CVE-2018-14553 - Potential Null pointer dereference in gdImageClone
Resolves: RHBZ#1811788
- Fixed heap based buffer overflow in gd_color_match.c:gdImageColorMatch() in libgd as used in imagecolormatch()
Resolves: RHBZ#1678104 (CVE-2019-6977)
- Fixed potential double-free in gdImage*Ptr()
Resolves: RHBZ#1679002 (CVE-2019-6978)


Related CVEs


CVE-2018-14553
CVE-2019-6977
CVE-2019-6978

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) gd-2.2.5-7.el8.src.rpme3b17b2ad2d966f3900f4d56940bb86c-
gd-2.2.5-7.el8.aarch64.rpm2702c6c4058a094333bae937899f61e2-
gd-devel-2.2.5-7.el8.aarch64.rpme62a3c040dd4d1bb0293d6483e31ab50-
Oracle Linux 8 (x86_64) gd-2.2.5-7.el8.src.rpme3b17b2ad2d966f3900f4d56940bb86c-
gd-2.2.5-7.el8.i686.rpmb231385a0e7cac1a1b0f088a072e6dc7-
gd-2.2.5-7.el8.x86_64.rpm5558a64fe100815a11df20bd1598cecb-
gd-devel-2.2.5-7.el8.i686.rpm703e5d2b9e1100a8a3a7504d9c3511f9-
gd-devel-2.2.5-7.el8.x86_64.rpm9c2d456f133de598c9b11447831e9023-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete