Ubuntu
tiff package

  1. Bug #380149
  2. Comment #13

Comment 13 for bug 380149

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package tiff - 3.8.2-11ubuntu0.9.04.1

---------------
tiff (3.8.2-11ubuntu0.9.04.1) jaunty-security; urgency=low

  * SECURITY UPDATE: denial of service via buffer underflow in the
    LZWDecodeCompat function (LP: #380149)
    - debian/patches/CVE-2009-2285.patch: abort if code is bigger than
      CODE_CLEAR in libtiff/tif_lzw.c.
    - CVE-2009-2285

 -- Marc Deslauriers <email address hidden> Fri, 03 Jul 2009 14:38:08 -0400