This repository has been archived by the owner on Mar 16, 2022. It is now read-only.
1.180.0
cf-buildpacks-eng
released this
16 Jan 20:01
·
111 commits
to master
since this release
Notably, this release addresses:
USN-3532-1 Ubuntu Security Notice USN-3532-1:
- CVE-2017-1000422: Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution
- CVE-2017-6312: Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, which triggers an out-of-bounds read, related to compiler optimizations.
- CVE-2017-6313: Integer underflow in the load_resources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (out-of-bounds read and program crash) via a crafted image entry size in an ICO file.
- CVE-2017-6314: The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (infinite loop) via a large TIFF file.
-ii gir1.2-gdkpixbuf-2.0 2.30.7-0ubuntu1.7 amd64 GDK Pixbuf library - GObject-Introspection
+ii gir1.2-gdkpixbuf-2.0 2.30.7-0ubuntu1.8 amd64 GDK Pixbuf library - GObject-Introspection
-ii libgdk-pixbuf2.0-0:amd64 2.30.7-0ubuntu1.7 amd64 GDK Pixbuf library
-ii libgdk-pixbuf2.0-common 2.30.7-0ubuntu1.7 all GDK Pixbuf library - data files
-ii libgdk-pixbuf2.0-dev 2.30.7-0ubuntu1.7 amd64 GDK Pixbuf library (development files)
+ii libgdk-pixbuf2.0-0:amd64 2.30.7-0ubuntu1.8 amd64 GDK Pixbuf library
+ii libgdk-pixbuf2.0-common 2.30.7-0ubuntu1.8 all GDK Pixbuf library - data files
+ii libgdk-pixbuf2.0-dev 2.30.7-0ubuntu1.8 amd64 GDK Pixbuf library (development files)