-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-04-02 12:15:45 UTC
-
Revision ID:
package-import@ubuntu.com-20120402121545-4v7622mmp6box103
Tags: 3.8.2-7ubuntu3.10
* SECURITY UPDATE: denial of service and possible code execution via
tiffdump
- debian/patches/z_CVE-2010-4665.patch: prevent integer overflow in
tools/tiffdump.c.
- CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
- debian/patches/z_CVE-2012-1173.patch: use TIFFSafeMultiply in
libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
- CVE-2012-1173
* debian/patches/CVE-2010-1411.patch: updated to use actual upstream fix
and to get TIFFSafeMultiply macro.