-
Committer:
Bazaar Package Importer
-
Author(s):
Nico Golde
-
Date:
2007-12-21 17:13:58 UTC
-
mfrom:
(5.1.5 hardy)
-
Revision ID:
james.westby@ubuntu.com-20071221171358-zbjzk21kmnizelhk
Tags: 0.6.16-2.1
* Non-maintainer upload by security team.
* This update addresses the following security issues:
- possible denial of service attack via crafted
image file leading to an infinite recursion in the
exif-loader.c (CVE-2007-6351; Closes: #457330).
- integer overflow in exif-data.c triggered by a crafted
image file could lead to arbitrary code execution
(CVE-2007-6352; Closes: #457330).