-
Committer:
Bazaar Package Importer
-
Author(s):
Martin Pitt
-
Date:
2005-11-16 10:13:42 UTC
-
Revision ID:
james.westby@ubuntu.com-20051116101342-hixx8puuxy62olct
Tags: 2.4.10-1ubuntu1.2
* SECURITY UPDATE: Arbitrary code execution and DoS.
* Add debian/patches/010_xpm-colors-overflow_CVE-2005-3186.patch:
- io-xpm.c: Add check to XPM reader to prevent integer overflow for
specially crafted number of colors.
- CVE-2005-3186
* Add debian/patches/011_xpm-colors-loop_CVE-2005-2975.patch:
- io-xpm.c: Fix endless loop with specially crafted number of colors.
- CVE-2005-2975