* SECURITY UPDATE: denial of service and possible code execution via
broken full-color images and a buffer overflow (LP: #1193065)
- debian/patches/CVE2013-2126.diff: fix error handling in
libraw/src/libraw_cxx.cpp.
- CVE-2013-2126
- debian/patches/CVE2013-2127.diff: fix wrong data_maximum calcluation
in libraw/src/libraw_cxx.cpp.
- CVE-2013-2127
-- Scott Kitterman <email address hidden> Thu, 20 Jun 2013 15:54:44 -0400
This bug was fixed in the package libkdcraw - 4:4.10.4-0ubuntu2
---------------
libkdcraw (4:4.10.4-0ubuntu2) saucy; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via patches/ CVE2013- 2126.diff: fix error handling in src/libraw_ cxx.cpp. patches/ CVE2013- 2127.diff: fix wrong data_maximum calcluation src/libraw_ cxx.cpp.
broken full-color images and a buffer overflow (LP: #1193065)
- debian/
libraw/
- CVE-2013-2126
- debian/
in libraw/
- CVE-2013-2127
-- Scott Kitterman <email address hidden> Thu, 20 Jun 2013 15:54:44 -0400