~ubuntu-branches/ubuntu/natty/tiff/natty-security

Viewing all changes in revision 22.

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2012-04-02 10:55:03 UTC
  • Revision ID: package-import@ubuntu.com-20120402105503-g6l5dg15dl9cu4dg
Tags: 3.9.4-5ubuntu6.1
* SECURITY UPDATE: denial of service and possible code execution via
  tiffdump
  - debian/patches/CVE-2010-4665.patch: prevent integer overflow in
    tools/tiffdump.c.
  - CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
  - debian/patches/CVE-2012-1173.patch: use TIFFSafeMultiply in
    libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
  - CVE-2012-1173

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: