[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1233-1] gifsicle security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : gifsicle
Version        : 1.67-1.1~deb7u1
CVE ID         : CVE-2017-1000421

It was discovered that there was a use-after-free vulnerability in
gifsicle, a command-line tool for manipulating GIF images.

For Debian 7 "Wheezy", this issue has been fixed in gifsicle version
1.67-1.1~deb7u1.

We recommend that you upgrade your gifsicle packages.

(Thanks to Herbert Parentes Fortes Neto for his help in preparing this
update.)


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=HM9r
-----END PGP SIGNATURE-----


Reply to: