{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "## Version 2.2.4 - 2017-01-18\n\n### Security\n\n- gdImageCreate() doesn't check for oversized images and as such is\n  prone to DoS vulnerabilities. (CVE-2016-9317)\n- double-free in gdImageWebPtr() (CVE-2016-6912)\n- potential unsigned underflow in gd_interpolation.c\n- DOS vulnerability in gdImageCreateFromGd2Ctx()\n\n### Fixed\n\n- Fix #354: Signed Integer Overflow gd_io.c\n- Fix #340: System frozen\n- Fix OOB reads of the TGA decompression buffer\n- Fix DOS vulnerability in gdImageCreateFromGd2Ctx()\n- Fix potential unsigned underflow\n- Fix double-free in gdImageWebPtr()\n- Fix invalid read in gdImageCreateFromTiffPtr()\n- Fix OOB reads of the TGA decompression buffer\n- Fix #68: gif: buffer underflow reported by AddressSanitizer\n- Avoid potentially dangerous signed to unsigned conversion\n- Fix #304: test suite failure in gif/bug00006 [2.2.3]\n- Fix #329: GD_BILINEAR_FIXED gdImageScale() can cause black border\n- Fix #330: Integer overflow in gdImageScaleBilinearPalette()\n- Fix 321: Null pointer dereferences in gdImageRotateInterpolated\n- Fix whitespace and add missing comment block\n- Fix #319: gdImageRotateInterpolated can have wrong background color\n- Fix color quantization documentation\n- Fix #309: gdImageGd2() writes wrong chunk sizes on boundaries\n- Fix #307: GD_QUANT_NEUQUANT fails to unset trueColor flag\n- Fix #300: gdImageClone() assigns res_y = res_x\n- Fix #299: Regression regarding gdImageRectangle() with gdImageSetThickness()\n- Replace GNU old-style field designators with C89 compatible initializers\n- Fix #297: gdImageCrop() converts palette image to truecolor image\n- Fix #290: TGA RLE decoding is broken\n- Fix unnecessary non NULL checks\n- Fix #289: Passing unrecognized formats to gdImageGd2 results in corrupted files\n- Fix #280: gdImageWebpEx() `quantization` parameter is a misnomer\n- Publish all gdImageCreateFromWebp*() functions and gdImageWebpCtx()\n- Fix issue #276: Sometimes pixels are missing when storing images as BMPs\n- Fix issue #275: gdImageBmpCtx() may segfault for non-seekable contexts\n- Fix copy&paste error in gdImageScaleBicubicFixed()\n\n### Added\n\n- More documentation\n- Documentation on GD and GD2 formats\n- More tests", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2017-01-19 09:33:25", "date_modified": null, "date_approved": null, "date_testing": "2017-01-20 18:23:34", "date_stable": "2017-01-23 23:54:30", "alias": "FEDORA-2017-2717b02630", "test_gating_status": null, "from_tag": null, "date_pushed": "2017-01-23 23:54:30", "meets_testing_requirements": false, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-2017-2717b02630", "title": "gd-2.2.4-1.fc24", "version_hash": "6055c97ba6f5e7ed8adbea565e80932695bc2f2c", "release": {"name": "F24", "long_name": "Fedora 24", "version": "24", "id_prefix": "FEDORA", "branch": "f24", "dist_tag": "f24", "stable_tag": "f24-updates", "testing_tag": "f24-updates-testing", "candidate_tag": "f24-updates-candidate", "pending_signing_tag": "f24-signing-pending", "pending_testing_tag": "f24-updates-testing-pending", "pending_stable_tag": "f24-updates-pending", "override_tag": "f24-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "remi", "email": "fedora@famillecollet.com", "id": 94, "avatar": "https://seccdn.libravatar.org/avatar/619d3923bdf71a705e6f65371e59246522f52ad96485c9731408ff28554716cf?s=24&d=retro", "openid": "remi.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by remi. ", "timestamp": "2017-01-19 09:33:25", "update_id": 78033, "user_id": 91, "id": 551022, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works for me with php 7.0/7.1 (own php builds)", "timestamp": "2017-01-19 16:09:39", "update_id": 78033, "user_id": 182, "id": 551232, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2017-01-20 19:22:11", "update_id": 78033, "user_id": 91, "id": 552005, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2017-01-21 00:55:03", "update_id": 78033, "user_id": 124, "id": 552185, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "trust admins"}, {"name": "signed_fpca"}, {"name": "fedora-contributor"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "ipausers"}, {"name": "fedora-br"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2017-01-23 03:04:32", "update_id": 78033, "user_id": 91, "id": 552731, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "No errors in dmesg or boot log after reboot", "timestamp": "2017-01-23 03:04:33", "update_id": 78033, "user_id": 1359, "id": 552732, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "jonathancalloway", "email": "jonathanecalloway@gmail.com", "id": 1359, "avatar": "https://seccdn.libravatar.org/avatar/a473093d87d674e05d7d53637609a09a837f8802cfaea92ab21ab7806d9dde03?s=24&d=retro", "openid": "jonathancalloway.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2017-01-24 03:48:59", "update_id": 78033, "user_id": 91, "id": 553151, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "gd-2.2.4-1.fc24", "signed": true, "release_id": 14, "type": "rpm", "epoch": 0}], "bugs": [], "updateid": "FEDORA-2017-2717b02630", "karma": 3, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}