giflib_5.1.4-3_sourceonly.changes ACCEPTED into unstable

Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 05 Jun 2018 20:58:51 +0200 Source: giflib Binary: giflib-tools libgif7 libgif-dev Architecture: source Version: 5.1.4-3 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Salvatore Bon

Processing of giflib_5.1.4-3_sourceonly.changes

giflib_5.1.4-3_sourceonly.changes uploaded successfully to localhost along with the files: giflib_5.1.4-3.dsc giflib_5.1.4-3.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)

Bug#820526: marked as done (giflib: CVE-2016-3977: gif2rgb: heap buffer overflow)

Your message dated Tue, 05 Jun 2018 19:19:54 + with message-id and subject line Bug#820526: fixed in giflib 5.1.4-3 has caused the Debian Bug report #820526, regarding giflib: CVE-2016-3977: gif2rgb: heap buffer overflow to be marked as done. This means that you claim that the problem has bee

Bug#820526: giflib: CVE-2016-3977: gif2rgb: heap buffer overflow

Hi I re-uploaded a version adding the patch. Regards, Salvatore

Bug#820526: giflib: CVE-2016-3977: gif2rgb: heap buffer overflow

Hi As spotted by Marc Deslauriers, the patch was dropped again in the 5.1.4-0.4 reopening the issue. Looking at the source, the patch is not applied to 5.1.4 upstream source. Cc'ing Paolo four douple check/confirming. Regards, Salvatore

Processed: unarchiving 820526, found 820526 in 5.1.4-1, found 820526 in 5.1.4-0.4

Processing commands for cont...@bugs.debian.org: > unarchive 820526 Bug #820526 {Done: Matthias Klose } [src:giflib] giflib: CVE-2016-3977: gif2rgb: heap buffer overflow Unarchived Bug 820526 > found 820526 5.1.4-1 Bug #820526 {Done: Matthias Klose } [src:giflib] giflib: CVE-2016-3977: gif2rgb: