-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-09-05 13:42:45 UTC
-
Revision ID:
package-import@ubuntu.com-20120905134245-z3uf3z526t145lnf
Tags: 2.6.11-2ubuntu4.1
* SECURITY UPDATE: denial of service via malformed .fit file header
- debian/patches/CVE-2012-3236.patch: check for valid XTENSION header
in plug-ins/file-fits/fits-io.c.
- CVE-2012-3236
* SECURITY UPDATE: denial of service and possible code execution via
crafted KiSS palette file
- debian/patches/CVE-2012-3403.patch: validate return codes and header
data in plug-ins/common/file-cel.c.
- CVE-2012-3403
* SECURITY UPDATE: denial of service and possible code execution via
crafted GIF image file
- debian/patches/CVE-2012-3481.patch: validate sizes, and prevent
overflows in plug-ins/common/file-gif-load.c.
- CVE-2012-3481