kumquat-buildroot

NetCube-Systems-Austria/kumquat-buildroot

Fork 0

Commit Graph

Author	SHA1	Message	Date
Gustavo Zacarias	ecc43a771a	gd: security bump to version 2.2.2 Drop upstreamed patches. Drop autoreconf since it's no longer required. Patch 0002-no-zlib.patch is no longer required, and is in fact harmful. Update homepage URL. Fixes: CVE-2015-8874 - #215 Stack overflow with gdImageFillToBorder CVE-2016-3074 - gd2: handle corrupt images better CVE-2016-5767 - Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2016-06-26 22:59:36 +02:00
Gustavo Zacarias	691fc0a198	gd: bump to version 2.1.1 Also add hash file. Remove CVE patch since it's upstream. Rename patches to new naming convention. Kill some whitespace. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2015-01-15 09:36:01 +01:00

Author

SHA1

Message

Date

Gustavo Zacarias

ecc43a771a

gd: security bump to version 2.2.2

Drop upstreamed patches.
Drop autoreconf since it's no longer required.
Patch 0002-no-zlib.patch is no longer required, and is in fact harmful.
Update homepage URL.

Fixes:
CVE-2015-8874 - #215 Stack overflow with gdImageFillToBorder
CVE-2016-3074 - gd2: handle corrupt images better
CVE-2016-5767 - Integer Overflow in gdImagePaletteToTrueColor()
resulting in heap overflow

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

2016-06-26 22:59:36 +02:00

Gustavo Zacarias

691fc0a198

gd: bump to version 2.1.1

Also add hash file.
Remove CVE patch since it's upstream.
Rename patches to new naming convention.
Kill some whitespace.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

2015-01-15 09:36:01 +01:00

2 Commits