[Bug 1193065] Re: Open CVEs in libkdcraw

Launchpad Bug Tracker Thu, 20 Jun 2013 16:22:07 -0700

This bug was fixed in the package libkdcraw - 4:4.10.4-0ubuntu2

---------------
libkdcraw (4:4.10.4-0ubuntu2) saucy; urgency=low


  * SECURITY UPDATE: denial of service and possible code execution via
    broken full-color images and a buffer overflow (LP: #1193065)
    - debian/patches/CVE2013-2126.diff: fix error handling in
      libraw/src/libraw_cxx.cpp.
    - CVE-2013-2126
    - debian/patches/CVE2013-2127.diff: fix wrong data_maximum calcluation
      in libraw/src/libraw_cxx.cpp.
    - CVE-2013-2127
 -- Scott Kitterman <[email protected]>   Thu, 20 Jun 2013 15:54:44 -0400

** Changed in: libkdcraw (Ubuntu Saucy)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to libkdcraw in Ubuntu.
https://bugs.launchpad.net/bugs/1193065

Title:
  Open CVEs in libkdcraw

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libkdcraw/+bug/1193065/+subscriptions

-- 
kubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs

[Bug 1193065] Re: Open CVEs in libkdcraw

Reply via email to