Opened 9 years ago
Closed 9 years ago
#7328 closed enhancement (fixed)
giflib-5.1.2
Reported by: | Fernando de Oliveira | Owned by: | Fernando de Oliveira |
---|---|---|---|
Priority: | normal | Milestone: | 7.9 |
Component: | BOOK | Version: | SVN |
Severity: | normal | Keywords: | |
Cc: |
Description
http://downloads.sourceforge.net/giflib/giflib-5.1.2.tar.bz2
http://sourceforge.net/p/giflib/code/ci/master/tree/NEWS
or
http://sourceforge.net/p/giflib/code/ci/master/tree/NEWS?format=raw
GIFLIB NEWS Version 5.1.2 ============= Code Fixes ---------- • Code hardening using reallocarray() from OpenBSD. • Sanity check in giffilter catches files with malformed extension records Fixes SourceForge bug #63: malformed gif causes segfault in giffilter. • Inexpensive sanity check in DGifSlurp() catches malformed files with no image descriptor. Fixes SourceForge bug #64: malformed gif causes crash in giftool. • Fix SourceForge bug #66: GifDrawBoxedText8x8() modifying constant input parameter. • Bail out of GIF read on invalid pixel width. Addresses Savannah bug #67: invalid shift in dgif_lib.c • Fix SourceForge bug #69: #69 Malformed: Gif file with no extension block after a GRAPHICS_EXT_FUNC_CODE extension causes segfault (in giftext). • Fix SourceForge bug #71: Buffer overwrite when giffixing a malformed gif. • Fix SourceForge bug #73: Null pointer deference in gifclrmap (only reachable with malformed GIF). • Fix SourceForge bug #74: Double free in gifsponge under 5.1,1, for any valid gif image. • Fix SourceForge bug #75: GAGetArgs overflows due to uncounted use of va_arg. • Sanity check in giffix catches some malformed files. Addresses SourceForge bug #77: dgif_lib.c: extension processing error
Change History (2)
comment:1 by , 9 years ago
Owner: | changed from | to
---|---|
Status: | new → assigned |
comment:2 by , 9 years ago
Resolution: | → fixed |
---|---|
Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
Fixed at r16795.
ftp://ftp.isu.edu.tw/pub/Unix/Web/PHP/distributions/php-&php-version;.tar.xz
commented out, because was down.