You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa gifsicle

Sigurnosni nedostatak programskog paketa gifsicle

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2018-202c536f70
2018-08-22 01:25:45.357596
——————————————————————————–

Name : gifsicle
Product : Fedora 28
Version : 1.91
Release : 1.fc28
URL : http://www.lcdf.org/gifsicle/
Summary : Powerful program for manipulating GIF images and animations
Description :
Gifsicle is a command-line tool for creating, editing, and getting
information about GIF images and animations.

Some more gifsicle features:

* Batch mode for changing GIFs in place.
* Prints detailed information about GIFs, including comments.
* Control over interlacing, comments, looping, transparency…
* Creates well-behaved GIFs: removes redundant colors, only uses local
color tables if it absolutely has to (local color tables waste space
and can cause viewing artifacts), etc.
* It can shrink colormaps and change images to use the Web-safe palette
(or any colormap you choose).
* It can optimize your animations! This stores only the changed portion
of each frame, and can radically shrink your GIFs. You can also use
transparency to make them even smaller. Gifsicle?s optimizer is pretty
powerful, and usually reduces animations to within a couple bytes of
the best commercial optimizers.
* Unoptimizing animations, which makes them easier to edit.
* A dumb-ass name.

One other program is included with gifsicle
and gifdiff compares two GIFs for identical visual appearance.

——————————————————————————–
Update Information:

Update to 1.91 – fixes double-free in read_gif
——————————————————————————–
ChangeLog:

* Mon May 21 2018 Orion Poplawski <orion@cora.nwra.com> – 1.91-1
– Update to 1.91
——————————————————————————–
References:

[ 1 ] Bug #1542037 – CVE-2017-18120 gifsicle: Double-free in the read_gif function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1542037
[ 2 ] Bug #1114293 – gifsicle-1.91 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1114293
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-202c536f70’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NOTB7I5T33ZFCV3WNRHRONFHAHFBKODD/

AutorZvonimir Bosnjak
Cert idNCERT-REF-2018-08-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa quazip

Otkriven je sigurnosni nedostatak u programskom paketu quazip za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje zapisivanje proizvoljnih datoteka...

Close