-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Package : tiff Version : 3.9.4-5+squeeze11 CVE ID : CVE-2013-4243 Debian Bug : #742917
Murray McAllister discovered a heap-based buffer overflow in the gif2tiff command line tool. Executing gif2tiff on a malicious tiff image could result in arbitrary code execution.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFTsvV/02K2KlS5mJARAr/sAJ9i0faa2MYJdPrsIMf+8yTsXTSxzACfe+4I 5gi+qzgy6G+NtY1oQQcXpI8= =Ju5E -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
