This bug was fixed in the package tiff - 3.8.2-7ubuntu3.2
--------------- tiff (3.8.2-7ubuntu3.2) hardy-security; urgency=low
* SECURITY UPDATE: denial of service via buffer underflow in the LZWDecodeCompat function (LP: #380149) - debian/patches/CVE-2009-2285.patch: abort if code is bigger than CODE_CLEAR in libtiff/tif_lzw.c. - CVE-2009-2285
-- Marc Deslauriers <email address hidden> Fri, 03 Jul 2009 14:54:05 -0400
This bug was fixed in the package tiff - 3.8.2-7ubuntu3.2
---------------
tiff (3.8.2-7ubuntu3.2) hardy-security; urgency=low
* SECURITY UPDATE: denial of service via buffer underflow in the patches/ CVE-2009- 2285.patch: abort if code is bigger than
LZWDecodeCompat function (LP: #380149)
- debian/
CODE_CLEAR in libtiff/tif_lzw.c.
- CVE-2009-2285
-- Marc Deslauriers <email address hidden> Fri, 03 Jul 2009 14:54:05 -0400