Sync exiv2 0.24-4.1 (main) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
exiv2 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Please sync exiv2 0.24-4.1 (main) from Debian unstable (main)
Explanation of the Ubuntu delta and why it can be dropped:
* SECURITY UPDATE: denial of service via buffer overflow
- debian/
src/
- CVE-2014-9449
CVE-2014-9449 is already fixed in Debian.
Changelog entries since current vivid version 0.24-4ubuntu1:
exiv2 (0.24-4.1) unstable; urgency=medium
* Non-maintainer upload.
* Add CVE-2014-9449.patch patch.
CVE-2014-9449: buffer overflow in RiffVideo:
Thanks to Klaus Ethgen <email address hidden> (Closes: #773846)
-- Salvatore Bonaccorso <email address hidden> Wed, 07 Jan 2015 20:25:48 +0100
CVE References
Changed in exiv2 (Ubuntu): | |
importance: | Undecided → Wishlist |
This bug was fixed in the package exiv2 - 0.24-4.1
Sponsored for Artur Rona (ari-tczew)
---------------
exiv2 (0.24-4.1) unstable; urgency=medium
* Non-maintainer upload. :infoTagsHandle r
* Add CVE-2014-9449.patch patch.
CVE-2014-9449: buffer overflow in RiffVideo:
Thanks to Klaus Ethgen <email address hidden> (Closes: #773846)
-- Salvatore Bonaccorso <email address hidden> Wed, 07 Jan 2015 20:25:48 +0100