[SECURITY] gd: CVE-2014-2497
Yaakov Selkowitz
yselkowitz@cygwin.com
Tue Jan 20 05:38:00 GMT 2015
Dr. Volker Zell,
A security vulnerability has been made public for gd. Could you please:
1) port this patch to 2.0.36RC1, for the benefit of those package
currently linked against libgd2:
http://git.php.net/?p=php-src.git;a=patch;h=cf47536
2) AND could you bump gd to 2.1.1, which already includes this fix, from
its new home at http://libgd.bitbucket.org/ so we can move on to the
currently supported code base for future builds?
TIA,
--
Yaakov
More information about the Cygwin-apps
mailing list