-
libexif (0.6.12-2ubuntu0.3) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via exif reading/writing.
- libexif/exif-{loader,data}.c: upstream fixes, thanks to Nico Golde.
- libexif/exif-data.c: upstream anti-crash fixes, thanks to Moritz
Muehlenhoff.
- CVE-2007-6351 CVE-2007-6352
-- Kees Cook <email address hidden> Tue, 14 Oct 2008 11:56:13 -0700
-
libexif (0.6.12-2ubuntu0.2) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted EXIF data.
* libexif/exif-data.c: upstream fixes applied inline.
* References
CVE-2006-4168
-- Kees Cook <email address hidden> Thu, 21 Jun 2007 15:42:02 -0700
-
libexif (0.6.12-2ubuntu0.1) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted EXIF data.
* libexif/exif-data.c: upstream fixes applied inline.
* References
CVE-2007-2645
-- Kees Cook <email address hidden> Mon, 11 Jun 2007 11:23:32 -0700
-
libexif (0.6.12-2) unstable; urgency=low
* libexif/exif-data.c: backported fix from CVS (revision 1.68)
(closes: #318662)
-- Frederic Peters <email address hidden> Sun, 17 Jul 2005 02:49:46 +0200
