Public bug reported: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
affects ubuntu/tiff status confirmed importance wishlist subscribe ubuntu-archive Please sync tiff 3.8.2-13 (main) from Debian unstable (main). Changelog since current karmic version 3.8.2-12: tiff (3.8.2-13) unstable; urgency=high * Apply patches to fix CVE-2009-2347, which covers two integer overflow conditions. * LZW patch from last update addressed CVE-2009-2285. Renamed the patch to make this clearer. -- Jay Berkenbilt <q...@debian.org> Sun, 12 Jul 2009 18:03:33 -0400 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iEYEARECAAYFAkpce3YACgkQW0JvuRdL8BrGEgCcDjxylHZfP4mFa2eBK4YS2XM/ jgkAnjZbmyFRKHINmdlww54IQz4nTZo/ =P+a5 -----END PGP SIGNATURE----- ** Affects: tiff (Ubuntu) Importance: Wishlist Status: Confirmed -- Sync tiff 3.8.2-13 (main) from Debian unstable (main). https://bugs.launchpad.net/bugs/399267 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs