This bug was fixed in the package libjpeg-turbo - 1.3.0-0ubuntu1.1
---------------
libjpeg-turbo (1.3.0-0ubuntu1.1) saucy-security; urgency=low
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_sos function (LP: #1252912)
- debian/patches/CVE-2013-6629.patch: check for duplications in
jdmarker.c.
- CVE-2013-6629
* SECURITY UPDATE: information disclosure via uninitialized memory in
the get_dht function (LP: #1252912)
- debian/patches/CVE-2013-6630.patch: properly clear out memory in
jdmarker.c.
- CVE-2013-6630
-- Marc Deslauriers <[email protected]> Fri, 22 Nov 2013 09:57:17
-0500
** Changed in: libjpeg-turbo (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1252912
Title:
CVE-2013-6629, CVE-2013-6630
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libjpeg-turbo/+bug/1252912/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
