Comment 11 for bug 380149

This bug was fixed in the package tiff - 3.8.2-7ubuntu3.2

---------------
tiff (3.8.2-7ubuntu3.2) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service via buffer underflow in the
    LZWDecodeCompat function (LP: #380149)
    - debian/patches/CVE-2009-2285.patch: abort if code is bigger than
      CODE_CLEAR in libtiff/tif_lzw.c.
    - CVE-2009-2285

 -- Marc Deslauriers <email address hidden> Fri, 03 Jul 2009 14:54:05 -0400