Ubuntu
libkdcraw package

  1. Bug #1193065
  2. Comment #7

Comment 7 for bug 1193065

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libkdcraw - 4:4.10.2-0ubuntu1.1

---------------
libkdcraw (4:4.10.2-0ubuntu1.1) raring-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    broken full-color images and a buffer overflow (LP: #1193065)
    - debian/patches/CVE2013-2126.diff: fix error handling in
      libraw/src/libraw_cxx.cpp.
    - CVE-2013-2126
    - debian/patches/CVE2013-2127.diff: fix wrong data_maximum calcluation
      in libraw/src/libraw_cxx.cpp.
    - CVE-2013-2127
 -- Scott Kitterman <email address hidden> Thu, 20 Jun 2013 15:38:37 -0400