[Bug 181077] [Sync request] Please sync exiftags 1.01-0.1 (universe) from Debian unstable (main)
Michael Bienia
michael at vorlon.ping.de
Mon Jan 7 18:50:17 GMT 2008
Public bug reported:
Binary package hint: exiftags
Please sync exiftags 1.01-0.1 (universe) from Debian unstable (main).
Changelog since current hardy version 1.00-1:
exiftags (1.01-0.1) unstable; urgency=high
* Non-maintainer upload by security team.
* New upstream release (Closes: #457062):
- CVE-2007-6356: exiftags before 1.01 allows attackers to cause a denial
of service (infinite loop) via recursive IFD references in the EXIF data
in a JPEG image.
- CVE-2007-6355: Unspecified vulnerability in exiftags before 1.01 has
unknown impact and attack vectors, resulting from a "field
offset overflow,"
-- Nico Golde <nion at debian.org> Thu, 03 Jan 2008 20:10:57 +0100
** Affects: exiftags (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Changed in: exiftags (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
[Sync request] Please sync exiftags 1.01-0.1 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/181077
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list