This is the mail archive of the cygwin-apps mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [SECURITY] gd: CVE-2016-3074

From: "Dr. Volker Zell" <dr dot volker dot zell at oracle dot com>
To: cygwin-apps at cygwin dot com
Date: Wed, 18 May 2016 21:02:21 +0200
Subject: Re: [SECURITY] gd: CVE-2016-3074
Authentication-results: sourceware.org; auth=none
References: <45d33bf7-146a-fa02-2699-047e6727efa5 at cygwin dot com>

>>>>> Yaakov Selkowitz writes:

    > Dr. Volker,
    > A heap overflow vulnerability has been announced in gd:

    > https://bugzilla.redhat.com/show_bug.cgi?id=1321893
    > http://pkgs.fedoraproject.org/cgit/rpms/gd.git/plain/gd-heap-overflow.patch

    > Would you be able to spin an update with that patch soon?

Last week of June the earliest. Same goes with the rest of my packages.
    
    > Yaakov

Sorry
  Volker

References:
- [SECURITY] gd: CVE-2016-3074
  - From: Yaakov Selkowitz

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]