This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
Re: [SECURITY] gd: CVE-2016-3074
- From: "Dr. Volker Zell" <dr dot volker dot zell at oracle dot com>
- To: cygwin-apps at cygwin dot com
- Date: Wed, 18 May 2016 21:02:21 +0200
- Subject: Re: [SECURITY] gd: CVE-2016-3074
- Authentication-results: sourceware.org; auth=none
- References: <45d33bf7-146a-fa02-2699-047e6727efa5 at cygwin dot com>
>>>>> Yaakov Selkowitz writes:
> Dr. Volker,
> A heap overflow vulnerability has been announced in gd:
> https://bugzilla.redhat.com/show_bug.cgi?id=1321893
> http://pkgs.fedoraproject.org/cgit/rpms/gd.git/plain/gd-heap-overflow.patch
> Would you be able to spin an update with that patch soon?
Last week of June the earliest. Same goes with the rest of my packages.
> Yaakov
Sorry
Volker