Package: libtiff4
Version: 3.7.2-2
Severity: critical
Tags: security
Hi!
Libtiff is vulnerable to another exploitable segfault, see
http://bugzilla.remotesensing.org/show_bug.cgi?id=843
for details.
However, please don't take the patch attached to that bug report, it's
incomplete. Upstream
Martin Pitt [EMAIL PROTECTED] wrote:
Package: libtiff4
Version: 3.7.2-2
Severity: critical
Tags: security
Hi!
Libtiff is vulnerable to another exploitable segfault, see
http://bugzilla.remotesensing.org/show_bug.cgi?id=843
for details.
However, please don't take the patch
Hi Jay!
Jay Berkenbilt [2005-05-19 5:30 -0400]:
Thanks. Debian Debian security: I am leaving today for vacation and
will be completely unreachable for at least a day or two. I should be
able to deal with the current version today before I leave, so no NMU
should be necessary for the
Martin Pitt [EMAIL PROTECTED] wrote:
libtiff4 isn't even in woody. I didn't check whether this flaw affects
woody's TIFF library, though.
But libtiff3g is, and this bug is there. Security: I'm attaching a
patch against the woody version. THIS IS UNTESTED. I extracted the
source package for
4 matches
Mail list logo
