← Back to branch summary

~ubuntu-branches/ubuntu/natty/libexif/natty-security

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2012-07-19 13:46:27 UTC
  • Revision ID: package-import@ubuntu.com-20120719134627-enq5e87tb12o99cb
Tags: 0.6.20-0ubuntu1.1
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
https://launchpad.net/bugs/1024213
* SECURITY UPDATE: denial of service and possible info disclosure via
  corrupted EXIF_TAG_COPYRIGHT tag (LP: #1024213)
  - debian/patches/CVE-2012-2812.patch: fix reading tags that aren't
    NUL-terminated in libexif/exif-entry.c.
  - CVE-2012-2812
* SECURITY UPDATE: denial of service and possible info disclosure via
  UTF-16 tag (LP: #1024213)
  - debian/patches/CVE-2012-2813.patch: don't read past the end of a
    tag when converting from UTF-16 in libexif/exif-entry.c.
  - CVE-2012-2813
* SECURITY UPDATE: denial of service and possible code execution via
  crafted tags (LP: #1024213)
  - debian/patches/CVE-2012-2814.patch: fix buffer overflows in
    libexif/exif-entry.c.
  - CVE-2012-2814
* SECURITY UPDATE: denial of service and possible info disclosure via
  crafted tags (LP: #1024213)
  - debian/patches/CVE-2012-2836.patch: fix buffer overflows in
    libexif/exif-data.c
  - CVE-2012-2836
* SECURITY UPDATE: denial of service via crafted tags (LP: #1024213)
  - debian/patches/CVE-2012-2837.patch: fix some possible
    division-by-zeros in libexif/olympus/mnote-olympus-entry.c.
  - CVE-2012-2837
* SECURITY UPDATE: denial of service and possible code execution via
  crafted tags (LP: #1024213)
  - debian/patches/CVE-2012-2840.patch: fix off-by-one in
    libexif/exif-utils.c.
  - CVE-2012-2840
* SECURITY UPDATE: denial of service and possible code execution via
  incorrect buffer size (LP: #1024213)
  - debian/patches/CVE-2012-2841.patch: validate buffer length in
    libexif/exif-entry.c.
  - CVE-2012-2841
Filename Latest Rev Last Changed Committer Comment Size
..
CVE-2012-2812.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 3 KB Diff Download File
CVE-2012-2813.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 1.4 KB Diff Download File
CVE-2012-2814.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 6.2 KB Diff Download File
CVE-2012-2836.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 3.9 KB Diff Download File
CVE-2012-2837.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 4 KB Diff Download File
CVE-2012-2840.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 828 bytes Diff Download File
CVE-2012-2841.patch 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 1.7 KB Diff Download File
extra_colorspace_check 11 13 years ago Robert Ancell releasing version 0.6.20-0ubuntu1 616 bytes Diff Download File
pkg_config_header_dir 11 13 years ago Robert Ancell releasing version 0.6.20-0ubuntu1 411 bytes Diff Download File
series 12 11 years ago Package Import Robot * SECURITY UPDATE: denial of service and possible 185 bytes Diff Download File