* SECURITY UPDATE: denial of service and possible info disclosure via
corrupted EXIF_TAG_COPYRIGHT tag (LP: #1024213)
- debian/patches/CVE-2012-2812.dpatch: fix reading tags that aren't
NUL-terminated in libexif/exif-entry.c.
- CVE-2012-2812
* SECURITY UPDATE: denial of service and possible info disclosure via
UTF-16 tag (LP: #1024213)
- debian/patches/CVE-2012-2813.dpatch: don't read past the end of a
tag when converting from UTF-16 in libexif/exif-entry.c.
- CVE-2012-2813
* SECURITY UPDATE: denial of service and possible code execution via
crafted tags (LP: #1024213)
- debian/patches/CVE-2012-2814.dpatch: fix buffer overflows in
libexif/exif-entry.c.
- CVE-2012-2814
* SECURITY UPDATE: denial of service and possible info disclosure via
crafted tags (LP: #1024213)
- debian/patches/CVE-2012-2836.dpatch: fix buffer overflows in
libexif/exif-data.c
- CVE-2012-2836
* SECURITY UPDATE: denial of service via crafted tags (LP: #1024213)
- debian/patches/CVE-2012-2837.dpatch: fix some possible
division-by-zeros in libexif/olympus/mnote-olympus-entry.c.
- CVE-2012-2837
* SECURITY UPDATE: denial of service and possible code execution via
crafted tags (LP: #1024213)
- debian/patches/CVE-2012-2840.dpatch: fix off-by-one in
libexif/exif-utils.c.
- CVE-2012-2840
* SECURITY UPDATE: denial of service and possible code execution via
incorrect buffer size (LP: #1024213)
- debian/patches/CVE-2012-2841.dpatch: validate buffer length in
libexif/exif-entry.c.
- CVE-2012-2841
-- Marc Deslauriers <email address hidden> Thu, 19 Jul 2012 14:46:59 -0400
This bug was fixed in the package libexif - 0.6.16-2.1ubuntu0.2
--------------- 2.1ubuntu0. 2) hardy-security; urgency=low
libexif (0.6.16-
* SECURITY UPDATE: denial of service and possible info disclosure via patches/ CVE-2012- 2812.dpatch: fix reading tags that aren't terminated in libexif/ exif-entry. c. patches/ CVE-2012- 2813.dpatch: don't read past the end of a exif-entry. c. patches/ CVE-2012- 2814.dpatch: fix buffer overflows in exif-entry. c. patches/ CVE-2012- 2836.dpatch: fix buffer overflows in exif-data. c patches/ CVE-2012- 2837.dpatch: fix some possible by-zeros in libexif/ olympus/ mnote-olympus- entry.c. patches/ CVE-2012- 2840.dpatch: fix off-by-one in exif-utils. c. patches/ CVE-2012- 2841.dpatch: validate buffer length in exif-entry. c.
corrupted EXIF_TAG_COPYRIGHT tag (LP: #1024213)
- debian/
NUL-
- CVE-2012-2812
* SECURITY UPDATE: denial of service and possible info disclosure via
UTF-16 tag (LP: #1024213)
- debian/
tag when converting from UTF-16 in libexif/
- CVE-2012-2813
* SECURITY UPDATE: denial of service and possible code execution via
crafted tags (LP: #1024213)
- debian/
libexif/
- CVE-2012-2814
* SECURITY UPDATE: denial of service and possible info disclosure via
crafted tags (LP: #1024213)
- debian/
libexif/
- CVE-2012-2836
* SECURITY UPDATE: denial of service via crafted tags (LP: #1024213)
- debian/
division-
- CVE-2012-2837
* SECURITY UPDATE: denial of service and possible code execution via
crafted tags (LP: #1024213)
- debian/
libexif/
- CVE-2012-2840
* SECURITY UPDATE: denial of service and possible code execution via
incorrect buffer size (LP: #1024213)
- debian/
libexif/
- CVE-2012-2841
-- Marc Deslauriers <email address hidden> Thu, 19 Jul 2012 14:46:59 -0400