This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
[SECURITY] gd: CVE-2016-3074
- From: Yaakov Selkowitz <yselkowitz at cygwin dot com>
- To: cygwin-apps at cygwin dot com
- Date: Wed, 4 May 2016 13:57:09 -0500
- Subject: [SECURITY] gd: CVE-2016-3074
- Authentication-results: sourceware.org; auth=none
Dr. Volker,
A heap overflow vulnerability has been announced in gd:
https://bugzilla.redhat.com/show_bug.cgi?id=1321893
http://pkgs.fedoraproject.org/cgit/rpms/gd.git/plain/gd-heap-overflow.patch
Would you be able to spin an update with that patch soon?
--
Yaakov