Accepted freeimage 3.17.0+ds1-5+deb9u1 (source amd64 all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 10 Dec 2019 16:35:54 +0100
Source: freeimage
Binary: libfreeimage-dev libfreeimage3 libfreeimage3-dbg libfreeimageplus-dev libfreeimageplus-doc libfreeimageplus3 libfreeimageplus3-dbg
Architecture: source amd64 all
Version: 3.17.0+ds1-5+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian Science Maintainers <debian-science-maintainers@lists.alioth.debian.org>
Changed-By: Hugo Lefeuvre <hle@debian.org>
Description:
libfreeimage-dev - Support library for graphics image formats (development files)
libfreeimage3 - Support library for graphics image formats (library)
libfreeimage3-dbg - Support library for graphics image formats (debugging symbols)
libfreeimageplus-dev - C++ wrappers for FreeImage (development files)
libfreeimageplus-doc - C++ wrappers for FreeImage (documentation)
libfreeimageplus3 - C++ wrappers for freeimage (library)
libfreeimageplus3-dbg - C++ wrappers for FreeImage (debugging symbols)
Closes: 929597
Changes:
freeimage (3.17.0+ds1-5+deb9u1) stretch-security; urgency=high
.
* Non-maintainer upload by the Security Team.
* CVE-2019-12213: stack exhaustion caused by unwanted recursion in
ReadThumbnail (Closes: #929597).
* CVE-2019-12211: heap buffer overflow caused by invalid memcpy in
PluginTIFF.
Checksums-Sha1:
da9b6313a62627d101fc7c1e8209d3b37417f201 2561 freeimage_3.17.0+ds1-5+deb9u1.dsc
5d47cabc768a57bd0aa033333d098361616fe1d9 1277296 freeimage_3.17.0+ds1.orig.tar.xz
c27b0dc7c7f434f0159c87a1ad2e826bf02302ca 25452 freeimage_3.17.0+ds1-5+deb9u1.debian.tar.xz
2bdcce3392bdbcf515495ff6f4b938977d43a827 8709 freeimage_3.17.0+ds1-5+deb9u1_amd64.buildinfo
c1001a7ef9d392c7d9c783b6df6dbdaec571b9f6 44624 libfreeimage-dev_3.17.0+ds1-5+deb9u1_amd64.deb
8c0a877eef92f5d527ed81c608f80040d9243bdf 1658774 libfreeimage3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
bfc0fa27b39cac755070daa8ac74bfe983e5dbed 284204 libfreeimage3_3.17.0+ds1-5+deb9u1_amd64.deb
0d4adbfd8f19205035e89df6c4fd3e0983f4d7d8 44510 libfreeimageplus-dev_3.17.0+ds1-5+deb9u1_amd64.deb
02c06aa9ef262f2e7fd6ef02011c8504d651e431 114858 libfreeimageplus-doc_3.17.0+ds1-5+deb9u1_all.deb
b625320b749ab91d2e102de0c6a7ea3314a20b61 69504 libfreeimageplus3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
f554903ab182f983919e73e46299283c2bd632ba 44620 libfreeimageplus3_3.17.0+ds1-5+deb9u1_amd64.deb
Checksums-Sha256:
3b65f9492f0fa5fb288fae8d217be8a7d82a26f4b6a075de460a8e2dbc9a9ab8 2561 freeimage_3.17.0+ds1-5+deb9u1.dsc
7742f3d4edf9bc7f3a3f6c5baa9f5546e85cffa575944455e0dc10e3c13263db 1277296 freeimage_3.17.0+ds1.orig.tar.xz
91cfbea15a5b82e5cc0a00aee947d7ddc58789a85d882f5ba44c11bae13b3f0d 25452 freeimage_3.17.0+ds1-5+deb9u1.debian.tar.xz
81b2b8e24a1a31383a3ebe6d398a9c5e1d74292060edc4a701d98fd88a1754d6 8709 freeimage_3.17.0+ds1-5+deb9u1_amd64.buildinfo
23d666fc91f8e4f8bef6d55cb66d75afa7687c611ba7ab9937eced11c1b83f11 44624 libfreeimage-dev_3.17.0+ds1-5+deb9u1_amd64.deb
ef405546bc9c63235edae88dca5605ca8702a066051c32b01caebcc1ae3600a6 1658774 libfreeimage3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
56e25e4d583784219973164ffb53fbad05f0244db6deef301acf43bcb83086c7 284204 libfreeimage3_3.17.0+ds1-5+deb9u1_amd64.deb
2791bf99668f4eb85742f33a088780c7734e9df8061ec76fe1daf41fd71bcda0 44510 libfreeimageplus-dev_3.17.0+ds1-5+deb9u1_amd64.deb
b6d0476bfb97caf22ed8971249a38f2a84b8472b995e2461a41b7502ba111281 114858 libfreeimageplus-doc_3.17.0+ds1-5+deb9u1_all.deb
a0b00758728c30dcd6ee3b23cc256911a0498a60aeaafc5a2f4328bdcf7882d5 69504 libfreeimageplus3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
2007e2179bcd3f0f88ed5836e2ec91787a77370b35865b637dbc3920ab8ba6b2 44620 libfreeimageplus3_3.17.0+ds1-5+deb9u1_amd64.deb
Files:
bde27fd9967c6abded8edd4cc186752b 2561 libs optional freeimage_3.17.0+ds1-5+deb9u1.dsc
de76f04882dbcac7b82cb1fc518d6e7c 1277296 libs optional freeimage_3.17.0+ds1.orig.tar.xz
475e1efd129c03b684d16737c07dbffb 25452 libs optional freeimage_3.17.0+ds1-5+deb9u1.debian.tar.xz
4ca70d1dbc1daa032ba10867c2139a86 8709 libs optional freeimage_3.17.0+ds1-5+deb9u1_amd64.buildinfo
9e7b44a890b948af79481a981d42cfb2 44624 libdevel optional libfreeimage-dev_3.17.0+ds1-5+deb9u1_amd64.deb
3041aed227220d6473bbf993713ef7e5 1658774 debug extra libfreeimage3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
c757cc1e274735244582732c5bb4bf7a 284204 libs optional libfreeimage3_3.17.0+ds1-5+deb9u1_amd64.deb
58dbd90fe212f233a8056f015a474421 44510 libdevel optional libfreeimageplus-dev_3.17.0+ds1-5+deb9u1_amd64.deb
fed8433cf3122d71d0ca16cf30cfb245 114858 doc optional libfreeimageplus-doc_3.17.0+ds1-5+deb9u1_all.deb
3d4e618a361c3c2e9c05b3a896dbe687 69504 debug extra libfreeimageplus3-dbg_3.17.0+ds1-5+deb9u1_amd64.deb
e12ce16e15497b86e159488df3cc6e06 44620 libs optional libfreeimageplus3_3.17.0+ds1-5+deb9u1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=PjmZ
-----END PGP SIGNATURE-----