[ubuntu/wily-proposed] libwmf 0.2.8.4-10.3ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Jul 7 19:27:15 UTC 2015 

libwmf (0.2.8.4-10.3ubuntu2) wily; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution
    - d/p/CVE-2015-0848_CVE-2015-4588_CVE-2015-4695_CVE-2015-4696.patch:
      check bounds and handle unexpected pixel depth in src/player/meta.h,
      src/ipa/ipa.h,  src/ipa/ipa/bmp.h.
    - CVE-2015-0848
    - CVE-2015-4588
    - CVE-2015-4685
    - CVE-2015-4696

Date: Tue, 07 Jul 2015 14:19:28 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libwmf/0.2.8.4-10.3ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 07 Jul 2015 14:19:28 -0400
Source: libwmf
Binary: libwmf0.2-7 libwmf0.2-7-gtk libwmf-bin libwmf-dev libwmf-doc
Architecture: source
Version: 0.2.8.4-10.3ubuntu2
Distribution: wily
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 libwmf-bin - Windows metafile conversion tools
 libwmf-dev - Windows metafile conversion development
 libwmf-doc - Windows metafile documentation
 libwmf0.2-7 - Windows metafile conversion library
 libwmf0.2-7-gtk - Windows metafile conversion library
Changes:
 libwmf (0.2.8.4-10.3ubuntu2) wily; urgency=medium
 .
   * SECURITY UPDATE: denial of service and possible code execution
     - d/p/CVE-2015-0848_CVE-2015-4588_CVE-2015-4695_CVE-2015-4696.patch:
       check bounds and handle unexpected pixel depth in src/player/meta.h,
       src/ipa/ipa.h,  src/ipa/ipa/bmp.h.
     - CVE-2015-0848
     - CVE-2015-4588
     - CVE-2015-4685
     - CVE-2015-4696
Checksums-Sha1:
 50b9823851bad350c9e1a4578dcf8e4ddb77edc3 2234 libwmf_0.2.8.4-10.3ubuntu2.dsc
 b034b37aae3eb01f710a417112c1f8593d97d769 11640 libwmf_0.2.8.4-10.3ubuntu2.debian.tar.xz
Checksums-Sha256:
 e27f03f95bbe06a0f7456a5a6dd9d08ed752dda60624ab9e0991f6fd9239f230 2234 libwmf_0.2.8.4-10.3ubuntu2.dsc
 63788cdbb1ad1cdccddd8045fa3a6601e8681bfb4fb86f783b296474379380b9 11640 libwmf_0.2.8.4-10.3ubuntu2.debian.tar.xz
Files:
 e4011bd49f4a946fd089c2b0c77c42bf 2234 libs optional libwmf_0.2.8.4-10.3ubuntu2.dsc
 d889646544e9899fff1e0d6f3f016729 11640 libs optional libwmf_0.2.8.4-10.3ubuntu2.debian.tar.xz
Original-Maintainer: Loïc Minier <lool at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=qugI
-----END PGP SIGNATURE-----

More information about the Wily-changes mailing list