Public bug reported:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
affects ubuntu/libexif
status new
importance wishlist
subscribe ubuntu-main-sponsors
Please sync libexif 0.6.16-2.1 (main) from Debian unstable (main).
Changelog since current hardy version 0.6.16-2:
libexif (0.6.16-2.1) unstable; urgency=high
* Non-maintainer upload by security team.
* This update addresses the following security issues:
- possible denial of service attack via crafted
image file leading to an infinite recursion in the
exif-loader.c (CVE-2007-6351; Closes: #457330).
- integer overflow in exif-data.c triggered by a crafted
image file could lead to arbitrary code execution
(CVE-2007-6352; Closes: #457330).
-- Nico Golde <[EMAIL PROTECTED]> Fri, 21 Dec 2007 17:13:58 +0100
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)
iQCVAwUBR3I28qPP1313boLqAQOF8QQApt2+S4Mqe7+lg+QzLMybZWKJ3frx+5NN
1Uwq8jV5TaKTRUOrl+vjeDsNmYfICAVgu0WoPgJr32Ta2hXtb03LLqLqbzYdZPuz
zBJofqqEKFeGi0C1Z05wdxVyalR/tqijGEiEhj2dJAldpOlQ1oD3c3JWZuKBipTz
PMv4pVoBtrU=
=I3BD
-----END PGP SIGNATURE-----
** Affects: libexif (Ubuntu)
Importance: Wishlist
Status: New
--
[Sync request] Please sync libexif 0.6.16-2.1 (main) from Debian unstable (main)
https://bugs.launchpad.net/bugs/178707
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
