Jay Berkenbilt wrote:
>
> Some time ago, a bug was posted about tiff being vulnerable to
> CAN-2005-1544: a bug that caused and exploitable segmentation fault on
> files with certain bad BitsPerSample values (making it a potential DOS
> bug). The fix is already in sarge. I had posted a patch against the
> version of the package in Woody some time ago, but I had not tested
> it. I have now built and tested this in a woody environment, and I
> believe that it does resolve the problem. The attached patch is
> identical to the other one except that it also patches
> debian/changelog. Feel free to disregard that part and treat this a
> security NMU. The portion of the patch that updates tif_dirread.c
> should be fine. Bug 309739 is still open (tagged woody). My patch to
> the changelog closes it. If this gets uploaded in some other way,
> someone can manually close the bug. Please let me know if there's
> anything else I need to do with this. Thanks!
Hmm, I must hav missed your earlier mail somehow. I haven't even
stored a trace of this issue. I'm pushing it into the buildd network
now. Thanks a lot.
Regards,
Joey
--
Every use of Linux is a proper use of Linux. -- Jon 'maddog' Hall
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
