[Bug 1193065] Re: Open CVEs in libkdcraw
Launchpad Bug Tracker
1193065 at bugs.launchpad.net
Fri Jun 21 12:08:15 UTC 2013
This bug was fixed in the package libkdcraw - 4:4.10.2-0ubuntu1.1
---------------
libkdcraw (4:4.10.2-0ubuntu1.1) raring-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
broken full-color images and a buffer overflow (LP: #1193065)
- debian/patches/CVE2013-2126.diff: fix error handling in
libraw/src/libraw_cxx.cpp.
- CVE-2013-2126
- debian/patches/CVE2013-2127.diff: fix wrong data_maximum calcluation
in libraw/src/libraw_cxx.cpp.
- CVE-2013-2127
-- Scott Kitterman <scott at kitterman.com> Thu, 20 Jun 2013 15:38:37 -0400
** Changed in: libkdcraw (Ubuntu Raring)
Status: Fix Committed => Fix Released
** Changed in: libkdcraw (Ubuntu Quantal)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to libkdcraw in Ubuntu.
https://bugs.launchpad.net/bugs/1193065
Title:
Open CVEs in libkdcraw
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libkdcraw/+bug/1193065/+subscriptions
More information about the kubuntu-bugs
mailing list