Opened 2 months ago

Closed 8 weeks ago

#19335 closed enhancement (fixed)

giflib-5.2.2

Reported by: Bruce Dubbs Owned by: Douglas R. Reno
Priority: elevated Milestone: 12.2
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (7)

comment:1 by Xi Ruoyao, 2 months ago

It attempts to use convert from ImageMagick: 

convert ../pic/gifgrid.gif -resize 50x50 giflib-logo.gif
make[1]: convert: No such file or directory
make[1]: *** [Makefile:46: giflib-logo.gif] Error 127

I worked it around with cp pic/gifgrid.gif doc/giflib-logo.gif.

comment:2 by Xi Ruoyao, 2 months ago

  • Fixes for CVE-2023-48161, CVE-2022-28506,
  • Address SF issue #138 Documentation for obsolete utilities still installed
  • Address SF issue #139: Typo in "LZW image data" page ("110_2 = 4_10")
  • Address SF issue #140: Typo in "LZW image data" page ("LWZ")
  • Address SF issue #141: Typo in "Bits and bytes" page ("filed")
  • Note as already fixed SF issue #143: cannot compile under mingw
  • Address SF issue #144: giflib-5.2.1 cannot be build on windows and other platforms using c89
  • Address SF issue #145: Remove manual pages installation for binaries that are not installed too
  • Address SF issue #146: [PATCH] Limit installed man pages to binaries, move giflib to section 7
  • Address SF issue #147 [PATCH] Fixes to doc/whatsinagif/ content
  • Address SF issue #148: heap Out of Bound Read in gif2rgb.c:298 DumpScreen2RGB
  • Declared no-info on SF issue #150: There is a denial of service vulnerability in GIFLIB 5.2.1
  • Declared Won't-fix on SF issue 149: Out of source builds no longer possible
  • Address SF issue #151: A heap-buffer-overflow in gif2rgb.c:294:45
  • Address SF issue #152: Fix some typos on the html documentation and man pages
  • Address SF issue #153: Fix segmentation faults due to non correct checking for args
  • Address SF issue #154: Recover the giffilter manual page
  • Address SF issue #155: Add gifsponge docs
  • Address SF issue #157: An OutofMemory-Exception or Memory Leak in gif2rgb
  • Address SF issue #158: There is a null pointer problem in gif2rgb
  • Address SF issue #159 A heap-buffer-overflow in GIFLIB5.2.1 DumpScreen2RGB() in gif2rgb.c:298:45
  • Address SF issue #163: detected memory leaks in openbsd_reallocarray giflib/openbsd-reallocarray.c
  • Address SF issue #164: detected memory leaks in GifMakeMapObject giflib/gifalloc.c
  • Address SF issue #166: a read zero page leads segment fault in getarg.c and memory leaks in gif2rgb.c and gifmalloc.c
  • Address SF issue #167: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function at Line 321 of gif2rgb.c

comment:3 by Xi Ruoyao, 2 months ago

Priority: normalelevated

Oops, security update during freeze :(.

in reply to:  3 comment:4 by Bruce Dubbs, 2 months ago

Replying to Xi Ruoyao:

Oops, security update during freeze :(.

It does not seem to be serious. It can wait until March.

comment:5 by Joe Locash, 2 months ago

This version also installs .xml files in /usr/share/man/man1 instead of man pages. There is an upstream report with a patch at https://sourceforge.net/p/giflib/bugs/168/

comment:6 by Douglas R. Reno, 8 weeks ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:7 by Douglas R. Reno, 8 weeks ago

Resolution: fixed
Status: assignedclosed

Fixed at e4e1474bedb34910a1d4640fdc98265826c5e475

SA-12.1-001 issued.

Note: See TracTickets for help on using tickets.