ยซ Changelog History


GD v2.2.4 Release Notes

Release Date: 2017-01-18 // over 7 years ago

  • ๐Ÿ”’ Security

    • gdImageCreate() doesn't check for oversized images and as such is prone to DoS vulnerabilities. (CVE-2016-9317)
    • ๐Ÿ†“ double-free in gdImageWebPtr() (CVE-2016-6912)
    • potential unsigned underflow in gd_interpolation.c
    • DOS vulnerability in gdImageCreateFromGd2Ctx()

    ๐Ÿ›  Fixed

    • ๐Ÿ›  Fix #354: Signed Integer Overflow gd_io.c
    • ๐Ÿ›  Fix #340: System frozen
    • ๐Ÿ›  Fix OOB reads of the TGA decompression buffer
    • ๐Ÿ›  Fix DOS vulnerability in gdImageCreateFromGd2Ctx()
    • ๐Ÿ›  Fix potential unsigned underflow
    • ๐Ÿ›  Fix double-free in gdImageWebPtr()
    • ๐Ÿ›  Fix invalid read in gdImageCreateFromTiffPtr()
    • ๐Ÿ›  Fix OOB reads of the TGA decompression buffer
    • ๐Ÿ›  Fix #68: gif: buffer underflow reported by AddressSanitizer
    • Avoid potentially dangerous signed to unsigned conversion
    • ๐Ÿ›  Fix #304: test suite failure in gif/bug00006 [2.2.3]
    • Fix #329: GD_BILINEAR_FIXED gdImageScale() can cause black border
    • ๐Ÿ›  Fix #330: Integer overflow in gdImageScaleBilinearPalette()
    • ๐Ÿ›  Fix 321: Null pointer dereferences in gdImageRotateInterpolated
    • ๐Ÿ›  Fix whitespace and add missing comment block
    • ๐Ÿ›  Fix #319: gdImageRotateInterpolated can have wrong background color
    • ๐Ÿ›  Fix color quantization documentation
    • ๐Ÿ›  Fix #309: gdImageGd2() writes wrong chunk sizes on boundaries
    • Fix #307: GD_QUANT_NEUQUANT fails to unset trueColor flag
    • Fix #300: gdImageClone() assigns res_y = res_x
    • ๐Ÿ›  Fix #299: Regression regarding gdImageRectangle() with gdImageSetThickness()
    • ๐Ÿ’… Replace GNU old-style field designators with C89 compatible initializers
    • ๐Ÿ›  Fix #297: gdImageCrop() converts palette image to truecolor image
    • ๐Ÿ›  Fix #290: TGA RLE decoding is broken
    • ๐Ÿ›  Fix unnecessary non NULL checks
    • ๐Ÿ›  Fix #289: Passing unrecognized formats to gdImageGd2 results in corrupted files
    • ๐Ÿ›  Fix #280: gdImageWebpEx() quantization parameter is a misnomer
    • Publish all gdImageCreateFromWebp*() functions and gdImageWebpCtx()
    • ๐Ÿ›  Fix issue #276: Sometimes pixels are missing when storing images as BMPs
    • ๐Ÿ›  Fix issue #275: gdImageBmpCtx() may segfault for non-seekable contexts
    • ๐Ÿ›  Fix copy&paste error in gdImageScaleBicubicFixed()

    โž• Added

    • ๐Ÿ“š More documentation
    • ๐Ÿ“š Documentation on GD and GD2 formats
    • โœ… More tests