Accepted: libexif 0.6.16-2.1 (source)
Ubuntu Installer
archive at ubuntu.com
Fri Jan 4 10:59:33 GMT 2008
Accepted:
OK: libexif_0.6.16.orig.tar.gz
OK: libexif_0.6.16-2.1.diff.gz
OK: libexif_0.6.16-2.1.dsc
-> Component: main Section: devel
Origin: Debian/unstable
Format: 1.7
Date: Fri, 04 Jan 2008 09:56:33 +0000
Source: libexif
Binary: libexif-dev, libexif12
Architecture: source
Version: 0.6.16-2.1
Distribution: hardy
Urgency: high
Maintainer: Frederic Peters <fpeters at debian.org>
Changed-By: Michael Bienia <michael at vorlon.ping.de>
Closes: 457330 457330
Changes:
libexif (0.6.16-2.1) unstable; urgency=high
.
* Non-maintainer upload by security team.
* This update addresses the following security issues:
- possible denial of service attack via crafted
image file leading to an infinite recursion in the
exif-loader.c (CVE-2007-6351; Closes: #457330).
- integer overflow in exif-data.c triggered by a crafted
image file could lead to arbitrary code execution
(CVE-2007-6352; Closes: #457330).
Files:
a22d0350058d240f2fb337c473ebe0fd 615 libs optional libexif_0.6.16-2.1.dsc
077206efeafbee981b41f5eea67024c7 15103 libs optional libexif_0.6.16-2.1.diff.gz
More information about the Hardy-changes
mailing list