Oval Definition:oval:org.opensuse.security:def:78432
Revision Date:2016-09-14Version:1
Title:Security update for gd (Moderate)
Description:



This update for gd fixes the following issues:

* CVE-2016-6214: Buffer over-read issue when parsing crafted TGA file [bsc#991436] * CVE-2016-6132: read out-of-bands was found in the parsing of TGA files using libgd [bsc#987577] * CVE-2016-6128: Invalid color index not properly handled [bsc#991710] * CVE-2016-6207: Integer overflow error within _gdContributionsAlloc() [bsc#991622] * CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif [bsc#988032] * CVE-2016-5116: avoid stack overflow (read) with large names [bsc#982176] * CVE-2016-6905: Out-of-bounds read in function read_image_tga in gd_tga.c [bsc#995034]

Family:unixClass:patch
Status:Reference(s):982176
987577
988032
991436
991622
991710
995034
CVE-2016-5116
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6905
SUSE-SU-2016:2303-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • gd-2.1.0-12.1 is installed
  • OR gd-32bit-2.1.0-12.1 is installed
    • BACK