Please sync tiff 3.8.2-11 (main) from Debian unstable (main).
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tiff (Ubuntu) |
Confirmed
|
Wishlist
|
Unassigned |
Bug Description
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/tiff
status confirmed
importance wishlist
subscribe ubuntu-archive
Please sync tiff 3.8.2-11 (main) from Debian unstable (main).
This includes a security fix.
Changelog since current intrepid version 3.8.2-10:
tiff (3.8.2-11) unstable; urgency=high
* Apply security patches (CVE-2008-2327)
* Convert patch system to quilt
* Create README.source
* Set standards version to 3.8.0
-- Jay Berkenbilt <email address hidden> Sun, 17 Aug 2008 13:16:37 -0400
tiff (3.8.2-10+lenny1) testing-security; urgency=high
* Apply patches from Drew Yao of Apple Product Security to fix
CVE-2008-2327, a potential buffer underflow in the LZW decoder
(tif_lzw.c).
-- Jay Berkenbilt <email address hidden> Sun, 17 Aug 2008 11:56:01 -0400
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Kees Cook <email address hidden>
iEYEARECAAYFAki
X7UAoINEm9o1vcy
=x/0Z
-----END PGP SIGNATURE-----