SUSE: 2022:928-1 Moderate: giflib Security Update for bci/openjdk-devel
suse
May 7, 2022
The container bci/openjdk-devel was updated
Summary
Advisory ID: SUSE-SU-2022:1565-1 Released: Fri May 6 17:09:36 2022 Summary: Security update for giflib Type: security Severity: moderate
Topics Covered
References
References : 1094832 1146299 1184123 974847 CVE-2016-3977 CVE-2018-11490 CVE-2019-15133
1094832,1146299,1184123,974847,CVE-2016-3977,CVE-2018-11490,CVE-2019-15133
This update for giflib fixes the following issues:
- CVE-2019-15133: Fixed a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero (bsc#1146299).
- CVE-2018-11490: Fixed a heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c (bsc#1094832).
- CVE-2016-3977: Fixed a heap buffer overflow in gif2rgb (bsc#974847).
Update to version 5.2.1
* In gifbuild.c, avoid a core dump on no color map.
* Restore inadvertently removed library version numbers in Makefile.
Changes in version 5.2.0
PREVIOUS
NEXT
Container Advisory ID : SUSE-CU-2022:928-1
Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-17.23 , bci/openjdk-devel:latest
Container Release : 17.23
Severity : moderate
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!