Accepted netpbm-free 2:10.0-10ubuntu1 (source)

Martin Pitt martin.pitt at ubuntu.com
Mon Feb 6 18:35:07 GMT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon,  6 Feb 2006 17:53:44 +0100
Source: netpbm-free
Binary: libnetpbm10-dev netpbm libnetpbm9 libnetpbm9-dev libnetpbm10
Architecture: source
Version: 2:10.0-10ubuntu1
Distribution: dapper
Urgency: low
Maintainer: Andreas Barth <aba at not.so.argh.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description: 
 libnetpbm10 - Shared libraries for netpbm
 libnetpbm10-dev - Development libraries and header files
 libnetpbm9 - Shared libraries for netpbm
 libnetpbm9-dev - Development libraries and header files
 netpbm     - Graphics conversion tools
Changes: 
 netpbm-free (2:10.0-10ubuntu1) dapper; urgency=low
 .
   * SECURITY UPDATE: Arbitrary code execution with crafted images.
   * pnm/pnmtopng.c:
     - Increase size of alphas_first_index and alphas_of_color_cnt arrays to
       fix off-by-one buffer overflow when using -alpha with an image with
       exactly 256 colors.
     - CVE-2005-3662
   * pnm/pnmtopng.c:
     - Fix buffer overflow on overly long text lines.
     - CVE-2005-3632
Files: 
 0211f2d7da333a9cbf102fe5a78e59fd 753 graphics optional netpbm-free_10.0-10ubuntu1.dsc
 46f1d521e3f9f184005e9d31a2061a55 46671 graphics optional netpbm-free_10.0-10ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFD539HDecnbV4Fd/IRAnWuAKC0cacwtpSl5mX/UaNaews+KW3VjACfc4uR
jEsOEbIvxT8vpAMsEKV2rag=
=x9WF
-----END PGP SIGNATURE-----


Accepted:
 OK: netpbm-free_10.0-10ubuntu1.dsc
     -> Component: main Section: graphics
 OK: netpbm-free_10.0-10ubuntu1.diff.gz



More information about the dapper-changes mailing list