-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-04-02 10:55:03 UTC
-
Revision ID:
package-import@ubuntu.com-20120402105503-g6l5dg15dl9cu4dg
Tags: 3.9.4-5ubuntu6.1
* SECURITY UPDATE: denial of service and possible code execution via
tiffdump
- debian/patches/CVE-2010-4665.patch: prevent integer overflow in
tools/tiffdump.c.
- CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
- debian/patches/CVE-2012-1173.patch: use TIFFSafeMultiply in
libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
- CVE-2012-1173