Overview

File _patchinfo of Package patchinfo.23761

<patchinfo incident="23761">
  <issue tracker="cve" id="2019-6978"/>
  <issue tracker="cve" id="2016-9011"/>
  <issue tracker="bnc" id="1006739">VUL-1: CVE-2016-9011: libwmf: Re: libwmf: memory allocation failure in wmf_malloc (api.c)</issue>
  <issue tracker="bnc" id="1174075">Changing %{_libexecdir} breaks some packages which are misusing the macro</issue>
  <issue tracker="bnc" id="1123522">VUL-1: CVE-2019-6978: gd: The GD Graphics Library 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c.</issue>
  <packager>fstrba</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for libwmf</summary>
  <description>This update for libwmf fixes the following issues:

libwmf was updated to 0.2.12:

* upstream changed to fork from Fedora: https://github.com/caolanm/libwmf
* merged all the pending fixes
* merge in fixes for libgd CVE-2019-6978 (bsc#1123522)
* fixed memory allocation failure (CVE-2016-9011)

* Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places