[SECURITY] gd: CVE-2014-2497

Yaakov Selkowitz yselkowitz@cygwin.com
Tue Jan 20 05:38:00 GMT 2015

Dr. Volker Zell,

A security vulnerability has been made public for gd.  Could you please:

1) port this patch to 2.0.36RC1, for the benefit of those package
currently linked against libgd2:


2) AND could you bump gd to 2.1.1, which already includes this fix, from
its new home at http://libgd.bitbucket.org/ so we can move on to the
currently supported code base for future builds?



More information about the Cygwin-apps mailing list