-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-05-05 15:30:09 UTC
-
Revision ID:
package-import@ubuntu.com-20140505153009-7wg35qouq8y5yerr
Tags: 4.0.2-4ubuntu3.1
* SECURITY UPDATE: denial of service via buffer overflow in gif2tiff
- debian/patches/CVE-2013-4231.patch: validate datasize in
tools/gif2tiff.c.
- CVE-2013-4231
* SECURITY UPDATE: denial of service via use-after-free in tiff2pdf
- debian/patches/CVE-2013-4232.patch: properly exit on error in
tools/tiff2pdf.c.
- CVE-2013-4232
* SECURITY UPDATE: denial of service and possible code execution in
gif2tiff tool
- debian/patches/CVE-2013-4243.patch: check width and height in
tools/gif2tiff.c.
- CVE-2013-4243
* SECURITY UPDATE: denial of service and possible code execution in
gif2tiff tool LZW decompressor
- debian/patches/CVE-2013-4244.patch: validate code size in
tools/gif2tiff.c.
- CVE-2013-4244