{"id":12760,"date":"2016-05-10T16:39:43","date_gmt":"2016-05-10T08:39:43","guid":{"rendered":"https:\/\/www.deepin.org\/?p=9826"},"modified":"2017-08-31T10:42:40","modified_gmt":"2017-08-31T02:42:40","slug":"security-updates%ef%bc%88dsa-3555-1-dsa-3556-1%ef%bc%89","status":"publish","type":"post","link":"https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3555-1-dsa-3556-1%ef%bc%89\/","title":{"rendered":"\u5b89\u5168\u66f4\u65b0\uff08DSA-3555-1 &#038;DSA-3556-1\uff09"},"content":{"rendered":"\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecimlib2\u548clibgd2\u66f4\u65b0\u3002<\/p>\n<p>&nbsp;<\/p>\n<h2>\u6f0f\u6d1e\u6982\u8ff0<\/h2>\n<p><strong>DSA-3555-1 imlib2 \u2014\u2014\u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2011-5326\" target=\"_blank\">CVE-2011-5326<\/a>: \u5728\u6d6e\u70b9\u5f02\u5e38\u65f6\u8bd5\u56fe\u7ed8\u5236\u4e00\u4e2a2\u00d71\u7684\u534a\u5f84\u692d\u5706\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2014-9771\" target=\"_blank\">CVE-2014-9771<\/a>: \u4e00\u4e2a\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u53ef\u80fd\u4f1a\u5bfc\u81f4\u65e0\u6548\u7684\u5185\u5b58\u8bfb\u53d6\u53ca\u4e0d\u5408\u7406\u7684\u5927\u5185\u5b58\u5206\u914d\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-3993\" target=\"_blank\">CVE-2016-3993<\/a>: \u4ece\u4e0d\u53d7\u4fe1\u4efb\u7684\u6765\u6e90\u7684\u5750\u6807\u7ed8\u56fe\u53ef\u80fd\u5bfc\u81f4\u5185\u5b58\u8d8a\u754c\u7684\u8bfb\u53d6\uff0c\u4ece\u800c\u5bfc\u81f4\u5e94\u7528\u7a0b\u5e8f\u7684\u5d29\u6e83\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-3994\" target=\"_blank\">CVE-2016-3994<\/a>: \u7578\u5f62\u7684\u56fe\u50cf\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5728GIF\u52a0\u8f7d\u5668\u4e2d\u7684\u4e00\u4e2a\u8d8a\u754c\u8bfb\u53d6\uff0c\u8fd9\u53ef\u80fd\u4f1a\u5bfc\u81f4\u5e94\u7528\u7a0b\u5e8f\u7684\u5d29\u6e83\u6216\u4fe1\u606f\u6cc4\u6f0f\uff1b<\/li>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-4024\" target=\"_blank\">CVE-2016-4024<\/a>: \u4e00\u4e2a\u6574\u6570\u6ea2\u51fa\u7684\u6f0f\u6d1e\uff0c\u4f1a\u5bfc\u81f4\u5185\u5b58\u7684\u8d8a\u754c\u5199\u5165\u53ca\u4e0d\u5145\u8db3\u7684\u5806\u8d44\u6e90\u7684\u5206\u914d\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>DSA-3556-1 libgd2 \u2014\u2014<\/strong><strong>\u5b89\u5168\u66f4\u65b0<\/strong><\/p>\n<p>\u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2016-3074\" target=\"_blank\">CVE-2016-3074<\/a>\uff1a\u5728\u7528\u4e8e\u56fe\u5f62\u521b\u5efa\u548c\u64cd\u4f5c\u7684\u56fe\u5f62\u7f16\u7a0b\u5e93libgd2\u4e2d\uff0c\u5f53\u5904\u7406\u4e00\u4e2a\u7279\u6b8a\u7684\u538b\u7f29CG2\u6570\u636e\u65f6\u7684\u4e00\u4e2a\u7b26\u53f7\u6027\u6f0f\u6d1e\uff0c\u4f1a\u5bfc\u81f4\u5806\u6ea2\u51fa\u7684\u95ee\u9898\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6b64\u6f0f\u6d1e\u9020\u6210\u4f7f\u7528\u6b64\u5e93\u7684\u5e94\u7528\u7a0b\u5e8f\u7684\u5d29\u6e83\uff0c\u6216\u53ef\u80fd\u4f7f\u7528\u7528\u6237\u7684\u6743\u9650\u5728\u8fd0\u884c\u7684\u5e94\u7528\u4e2d\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<h2>\u4fee\u590d\u60c5\u51b5<\/h2>\n<p>imlib2\u7684\u5b89\u5168\u6f0f\u6d1e\u5728\u57281.4.8-1\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\uff1blibgd2\u7684\u5b89\u5168\u6f0f\u6d1e\u5728 2.1.1-4.1\u7248\u672c\u4e2d\u8fdb\u884c\u4e86\u4fee\u590d\u3002<\/p>\n<p>\u8bf7\u5404\u4f4d\u5c3d\u5feb\u66f4\u65b0\u7cfb\u7edf\u4ee5\u83b7\u53d6\u6f0f\u6d1e\u4fee\u590d\u8865\u4e01\u3002","protected":false},"excerpt":{"rendered":"<p>\u6b64\u6b21\u5b89\u5168\u6f0f\u6d1e\u66f4\u65b0\u5305\u62ecimlib2\u548clibgd2\u66f4\u65b0\u3002 &nbsp; \u6f0f\u6d1e\u6982\u8ff0 DSA-3555-1 imlib2 \u2014\u2014\u5b89\u5168\u66f4\u65b0 \u5b89\u5168\u6570\u636e\u5e93\u8be6\u7ec6\u4fe1\u606f\uff1a CVE-2011-5326: \u5728\u6d6e\u70b9\u5f02\u5e38\u65f6\u8bd5\u56fe\u7ed8\u5236\u4e00\u4e2a2\u00d71\u7684\u534a\u5f84\u692d\u5706\uff1b CVE-2014-9771: \u4e00\u4e2a\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u53ef\u80fd\u4f1a\u5bfc\u81f4\u65e0\u6548\u7684\u5185\u5b58\u8bfb\u53d6\u53ca\u4e0d\u5408\u7406\u7684\u5927\u5185\u5b58\u5206\u914d\uff1b CVE-2016-3993: \u4ece\u4e0d\u53d7\u4fe1\u4efb\u7684\u6765\u6e90\u7684\u5750\u6807\u7ed8\u56fe\u53ef\u80fd\u5bfc\u81f4\u5185\u5b58\u8d8a\u754c\u7684\u8bfb\u53d6\uff0c ...<a href=https:\/\/www.deepin.org.cn\/zh\/security-updates%ef%bc%88dsa-3555-1-dsa-3556-1%ef%bc%89\/>\u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":12765,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[75],"tags":[],"_links":{"self":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12760"}],"collection":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/comments?post=12760"}],"version-history":[{"count":11,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12760\/revisions"}],"predecessor-version":[{"id":25289,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/posts\/12760\/revisions\/25289"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/media?parent=12760"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/categories?post=12760"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/zh\/wp-json\/wp\/v2\/tags?post=12760"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}