[SECURITY] [DLA 1233-1] gifsicle security update

2018-01-08T14:20:35
ID DEBIAN:DLA-1233-1:D74C1
Type debian
Reporter Debian
Modified 2018-01-08T14:20:35

Description

Package : gifsicle Version : 1.67-1.1~deb7u1 CVE ID : CVE-2017-1000421

It was discovered that there was a use-after-free vulnerability in gifsicle, a command-line tool for manipulating GIF images.

For Debian 7 "Wheezy", this issue has been fixed in gifsicle version 1.67-1.1~deb7u1.

We recommend that you upgrade your gifsicle packages.

(Thanks to Herbert Parentes Fortes Neto for his help in preparing this update.)

Regards,


  ,''`.
 : :'  :     Chris Lamb
 `. `'`      lamby@debian.org / chris-lamb.co.uk
   `-