Advisories MDKSA-2007:122: Updated gd packages fix vulnerability

[paul]

A flaw in libgd2 was found by Xavier Roche where it would not correctly

validate PNG callback results. If an application linked against

libgd2 was tricked into processing a specially-crafted PNG file, it

could cause a denial of service scenario via CPU resource consumption.

 

The updated packages have been patched to prevent this issue.