Several security issues were fixed in GD.
Software Description:
- libgd2: GD Graphics Library
Details:
It was discovered that GD incorrectly handled memory when processing
certain images. A remote attacker could use this issue with a specially
crafted image file to cause GD to crash, resulting in a denial of service,
or possibly execute arbitrary code.
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10: libgd-tools 2.2.5-4ubuntu1.1 libgd3 2.2.5-4ubuntu1.1 Ubuntu 18.04 LTS: libgd-tools 2.2.5-4ubuntu0.3 libgd3 2.2.5-4ubuntu0.3 Ubuntu 16.04 LTS: libgd-tools 2.1.1-4ubuntu0.16.04.11 libgd3 2.1.1-4ubuntu0.16.04.11 Ubuntu 14.04 LTS: libgd-tools 2.1.0-3ubuntu0.11 libgd3 2.1.0-3ubuntu0.11 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-3900-1
CVE-2019-6977, CVE-2019-6978
Get the latest Linux and open source security news straight to your inbox.