-
Committer:
Bazaar Package Importer
-
Author(s):
Nico Golde
-
Date:
2009-04-22 00:19:51 UTC
-
Revision ID:
james.westby@ubuntu.com-20090422001951-d4ret0g0hainvwor
Tags: 8.64~dfsg-1+squeeze1
* Non-maintainer upload by the Security Team.
* This update fixes various security issues:
- CVE-2009-0792: multiple integer overflows in the icc library
can cause a heap-based buffer overflow possibly leading to arbitray
code execution.
- CVE-2009-0584/CVE-2009-0583: Multiple integer overflows causing an
application crash or possibly arbitrary code execution.
- CVE-2009-0196: heap-based buffer overflow in big2_decode_symbol_dict()
leading to arbitrary code execution via a crafted JBIG2 symbol
dictionary segment.
.
(Closes: #524915, #522416, #524803)