[Bug 1333429] [NEW] Sync tiff 4.0.3-9 (main) from Debian unstable (main)
Launchpad Bug Tracker
1333429 at bugs.launchpad.net
Mon Jun 23 21:29:23 UTC 2014
You have been subscribed to a public bug by Artur Rona (ari-tczew):
Please sync tiff 4.0.3-9 (main) from Debian unstable (main)
Explanation of the Ubuntu delta and why it can be dropped:
* SECURITY UPDATE: denial of service and possible code execution in
gif2tiff tool
- debian/patches/CVE-2013-4243.patch: check width and height in
tools/gif2tiff.c.
- CVE-2013-4243
Debian has merged Ubuntu changes.
Changelog entries since current utopic version 4.0.3-8ubuntu1:
tiff (4.0.3-9) unstable; urgency=medium
* Fix for CVE-2013-4243 (validation for gif2tiff) from Red Hat. (Closes:
#742917)
-- Jay Berkenbilt <qjb at debian.org> Sat, 21 Jun 2014 18:12:40 -0400
** Affects: tiff (Ubuntu)
Importance: Wishlist
Status: New
--
Sync tiff 4.0.3-9 (main) from Debian unstable (main)
https://bugs.launchpad.net/bugs/1333429
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list