This bug was fixed in the package devil - 1.6.7-5.1ubuntu0.1
--------------- devil (1.6.7-5.1ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: Fix buffer overflows (LP: #603689) - modified src-IL/src/il_hd .c: Fix buffer overflows in the iGetHdrHeader() function that allow arbitrary code execution via a crafted Radiance RGBE file. Patch provided by Debian in Etch. (DSA-1717-1, DTSA-184-1) - CVE-2008-5262 -- Brian Thomason <email address hidden> Fri, 09 Jul 2010 13:32:14 -0400
This bug was fixed in the package devil - 1.6.7-5.1ubuntu0.1
--------------- 5.1ubuntu0. 1) hardy-security; urgency=low
devil (1.6.7-
* SECURITY UPDATE: Fix buffer overflows (LP: #603689)
- modified src-IL/src/il_hd .c: Fix buffer overflows in the iGetHdrHeader()
function that allow arbitrary code execution via a crafted Radiance RGBE
file.
Patch provided by Debian in Etch. (DSA-1717-1, DTSA-184-1)
- CVE-2008-5262
-- Brian Thomason <email address hidden> Fri, 09 Jul 2010 13:32:14 -0400