libexif (0.6.16-2.1) unstable; urgency=high
* Non-maintainer upload by security team.
* This update addresses the following security issues:
- possible denial of service attack via crafted
image file leading to an infinite recursion in the
exif-loader.c (CVE-2007-6351; Closes: #457330).
- integer overflow in exif-data.c triggered by a crafted
image file could lead to arbitrary code execution
(CVE-2007-6352; Closes: #457330).
-- Michael Bienia <email address hidden> Fri, 04 Jan 2008 09:56:33 +0000