-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-04-02 11:01:42 UTC
-
Revision ID:
package-import@ubuntu.com-20120402110142-bgm3n3a5r14933y7
Tags: 3.9.4-2ubuntu0.5
* SECURITY UPDATE: denial of service and possible code execution via
tiffdump
- debian/patches/CVE-2010-4665.patch: prevent integer overflow in
tools/tiffdump.c.
- CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
- debian/patches/CVE-2012-1173.patch: use TIFFSafeMultiply in
libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
- CVE-2012-1173