Ubuntu Security Notice 3410-2 - USN-3410-1 fixed a vulnerability in GD Graphics Library. This update provides the corresponding update for Ubuntu 12.04 ESM. A It was discovered that the GD Graphics Library incorrectly A handled certain malformed PNG images. A remote attacker could use this A issue to cause the GD Graphics Library to crash, resulting in a denial A of service, or possibly execute arbitrary code. Various other issues were also addressed.
5f6af102e745a7efbde4209d2f971a4b18d9b2a59182e9dc21150660abdb9939
==========================================================================
Ubuntu Security Notice USN-3410-2
September 05, 2017
libgd2 vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
GD library could be made to crash if it opened a specially crafted
file.
Software Description:
- libgd2: GD Graphics Library
Details:
USN-3410-1 fixed a vulnerability in GD Graphics Library.
This update provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
A It was discovered that the GD Graphics Library (aka libgd) incorrectly
A handled certain malformed PNG images. A remote attacker could use this
A issue to cause the GD Graphics Library to crash, resulting in a denial
A of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
A libgd-toolsA A A A A A A A A A A A A A A A A A A A A 2.0.36~rc1~dfsg-6ubuntu2.6
A libgd2-noxpmA A A A A A A A A A A A A A A A A A A A 2.0.36~rc1~dfsg-6ubuntu2.6
A libgd2-xpmA A A A A A A A A A A A A A A A A A A A A A 2.0.36~rc1~dfsg-6ubuntu2.6
In general, a standard system update will make all the necessary
changes.
References:
A https://www.ubuntu.com/usn/usn-3410-2
A https://www.ubuntu.com/usn/usn-3410-1
A CVE-2017-6362