libexif 0.6.20-1ubuntu0.1 source package in Ubuntu

Changelog

libexif (0.6.20-1ubuntu0.1) oneiric-security; urgency=low

  * SECURITY UPDATE: denial of service and possible info disclosure via
    corrupted EXIF_TAG_COPYRIGHT tag (LP: #1024213)
    - debian/patches/CVE-2012-2812.patch: fix reading tags that aren't
      NUL-terminated in libexif/exif-entry.c.
    - CVE-2012-2812
  * SECURITY UPDATE: denial of service and possible info disclosure via
    UTF-16 tag (LP: #1024213)
    - debian/patches/CVE-2012-2813.patch: don't read past the end of a
      tag when converting from UTF-16 in libexif/exif-entry.c.
    - CVE-2012-2813
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted tags (LP: #1024213)
    - debian/patches/CVE-2012-2814.patch: fix buffer overflows in
      libexif/exif-entry.c.
    - CVE-2012-2814
  * SECURITY UPDATE: denial of service and possible info disclosure via
    crafted tags (LP: #1024213)
    - debian/patches/CVE-2012-2836.patch: fix buffer overflows in
      libexif/exif-data.c
    - CVE-2012-2836
  * SECURITY UPDATE: denial of service via crafted tags (LP: #1024213)
    - debian/patches/CVE-2012-2837.patch: fix some possible
      division-by-zeros in libexif/olympus/mnote-olympus-entry.c.
    - CVE-2012-2837
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted tags (LP: #1024213)
    - debian/patches/CVE-2012-2840.patch: fix off-by-one in
      libexif/exif-utils.c.
    - CVE-2012-2840
  * SECURITY UPDATE: denial of service and possible code execution via
    incorrect buffer size (LP: #1024213)
    - debian/patches/CVE-2012-2841.patch: validate buffer length in
      libexif/exif-entry.c.
    - CVE-2012-2841
 -- Marc Deslauriers <email address hidden>   Thu, 19 Jul 2012 13:44:45 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2012-07-19
Uploaded to:
Oneiric
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libexif_0.6.20.orig.tar.gz 1.9 MiB d8f437d479dd7172167562d0cbc6b362b7a70166f5989a33995adba082e9204f
libexif_0.6.20-1ubuntu0.1.debian.tar.gz 13.5 KiB 173f957bc6c88736d546b75f201dc112e1b1a5d3ccbfe39f4eca6cf88b07d3cf
libexif_0.6.20-1ubuntu0.1.dsc 2.1 KiB 79cb6f2d6d496ade1fbe4b02425cba27a2bc1a91ecb59fcc81a709c1eed26d23

View changes file

Binary packages built by this source

libexif-dev: No summary available for libexif-dev in ubuntu oneiric.

No description available for libexif-dev in ubuntu oneiric.

libexif12: No summary available for libexif12 in ubuntu oneiric.

No description available for libexif12 in ubuntu oneiric.