libgd2 (2.3.0-2ubuntu2.3) jammy-security; urgency=medium
* SECURITY UPDATE: gdGetBuf and gdPutBuf are missing bounds checks,
allowing for out-of-bounds reads.
- debian/patches/CVE-2021-40812.patch: Add bounds checking after gdPutBuf
calls.
- CVE-2021-40812
-- Nicolas Campuzano Jimenez <nicolas.campuzano@canonical.com> Wed, 13 Nov 2024 18:10:36 -0500
libgd2 (2.3.0-2ubuntu2) jammy; urgency=medium
* No-change rebuild against latest libwebp
-- Jeremy Bicha <jeremy.bicha@canonical.com> Tue, 01 Feb 2022 09:24:16 -0500
libgd2 (2.3.0-2ubuntu1) impish; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2021-38115.patch: fix a read out-of-bounds in
reading tga header file in src/gd_tga.c.
- CVE-2021-38115
* SECURITY UPDATE: Double free
- debian/patches/CVE-2021-40145-*.patch: fix a memory leak in
src/gd_gd2.c.
- CVE-2021-40145
-- Leonidas Da Silva Barbosa <leo.barbosa@canonical.com> Thu, 09 Sep 2021 09:29:48 -0300
libgd2 (2.3.0-2) unstable; urgency=medium
* Add patch to fix gdImageStringFT() fails for empty strings
(Closes: #959591)
-- Ondřej Surý <ondrej@debian.org> Wed, 06 May 2020 16:11:29 +0200
libgd2 (2.3.0-1) unstable; urgency=medium
* New upstream version 2.3.0
-- Ondřej Surý <ondrej@debian.org> Fri, 24 Apr 2020 09:41:29 +0200
libgd2 (2.2.5-5.2) unstable; urgency=high
* Non-maintainer upload.
* Fix CVE-2019-11038: Uninitialized read in gdImageCreateFromXbm
(Closes: #929821)
-- Jonas Meurer <jonas@freesources.org> Tue, 11 Jun 2019 16:21:57 +0200
libgd2 (2.2.5-5.1) unstable; urgency=medium
* Non-maintainer upload.
* Heap-based buffer overflow in gdImageColorMatch (CVE-2019-6977)
(Closes: #920645)
* Potential double-free in gdImage*Ptr() (CVE-2019-6978) (Closes: #920728)
-- Salvatore Bonaccorso <carnil@debian.org> Sat, 02 Feb 2019 10:55:00 +0100
libgd2 (2.2.5-5) unstable; urgency=medium
* Update Vcs-* links to salsa.d.o
* Update maintainers address to team+gd@tracker.d.o (Closes: #899928)
* Remove Files-Excluded from d/copyright, the files just inherit the
global license (Closes: #883760)
-- Ondřej Surý <ondrej@debian.org> Sun, 28 Oct 2018 22:20:23 +0000
libgd2 (2.2.5-4.1) unstable; urgency=medium
* Non-maintainer upload.
* Potential infinite loop in gdImageCreateFromGifCtx (CVE-2018-5711)
(Closes: #887485)
* bmp: check return value in gdImageBmpPtr (CVE-2018-1000222)
(Closes: #906886)
* Remove src/Makefile.am patching in
tests-make-a-little-change-for-autopkgtest.patch. Fixes "libgd2 FTBFS:
cannot find -lgd".
Thanks to Helmut Grohne and Adrian Bunk (Closes: #906840)
-- Salvatore Bonaccorso <carnil@debian.org> Sat, 06 Oct 2018 00:22:59 +0200
libgd2 (2.2.5-4) unstable; urgency=medium
[ Jiří Paleček ]
* Disable the test during build and run the testsuite through autopkgtest
(Closes: #867003)
* Make --as-needed work again
[ Ondřej Surý ]
* Get rid of libgd2*-dev traces (Closes: #879254)
-- Ondřej Surý <ondrej@debian.org> Sun, 22 Oct 2017 11:14:32 +0200
# For older changelog entries, run 'apt-get changelog libgd3'
Generated by dwww version 1.14 on Sat Apr 19 01:32:14 CEST 2025.