[Bug 178707] [NEW] [Sync request] Please sync libexif 0.6.16-2.1 (main) from Debian unstable (main)
Launchpad Bug Tracker
178707 at bugs.launchpad.net
Thu Feb 17 10:10:01 UTC 2011
You have been subscribed to a public bug by Daniel Holbach (dholbach):
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
affects ubuntu/libexif
status new
importance wishlist
subscribe ubuntu-main-sponsors
Please sync libexif 0.6.16-2.1 (main) from Debian unstable (main).
Changelog since current hardy version 0.6.16-2:
libexif (0.6.16-2.1) unstable; urgency=high
* Non-maintainer upload by security team.
* This update addresses the following security issues:
- possible denial of service attack via crafted
image file leading to an infinite recursion in the
exif-loader.c (CVE-2007-6351; Closes: #457330).
- integer overflow in exif-data.c triggered by a crafted
image file could lead to arbitrary code execution
(CVE-2007-6352; Closes: #457330).
-- Nico Golde <nion at debian.org> Fri, 21 Dec 2007 17:13:58 +0100
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)
iQCVAwUBR3I28qPP1313boLqAQOF8QQApt2+S4Mqe7+lg+QzLMybZWKJ3frx+5NN
1Uwq8jV5TaKTRUOrl+vjeDsNmYfICAVgu0WoPgJr32Ta2hXtb03LLqLqbzYdZPuz
zBJofqqEKFeGi0C1Z05wdxVyalR/tqijGEiEhj2dJAldpOlQ1oD3c3JWZuKBipTz
PMv4pVoBtrU=
=I3BD
-----END PGP SIGNATURE-----
** Affects: libexif (Ubuntu)
Importance: Wishlist
Status: Fix Released
--
[Sync request] Please sync libexif 0.6.16-2.1 (main) from Debian unstable (main)
https://bugs.launchpad.net/bugs/178707
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is a direct subscriber.
More information about the Ubuntu-sponsors
mailing list