-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 03 Jan 2008 20:10:57 +0100 Source: exiftags Binary: exiftags Architecture: source i386 Version: 1.01-0.1 Distribution: unstable Urgency: high Maintainer: Mike Mattice <mattice@debian.org> Changed-By: Nico Golde <nion@debian.org> Description: exiftags - Utility to read Exif tags from a digital camera JPEG file Closes: 457062 Changes: exiftags (1.01-0.1) unstable; urgency=high . * Non-maintainer upload by security team. * New upstream release (Closes: #457062): - CVE-2007-6356: exiftags before 1.01 allows attackers to cause a denial of service (infinite loop) via recursive IFD references in the EXIF data in a JPEG image. - CVE-2007-6355: Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow," Files: cfe8a608a7e7cae8f110b0fbe5dd44fa 565 graphics optional exiftags_1.01-0.1.dsc 9d5bce968fdde2dc24ba49c0024dc0cc 70921 graphics optional exiftags_1.01.orig.tar.gz e0eb4f0d6bbac4e5009339809c7fd08b 2176 graphics optional exiftags_1.01-0.1.diff.gz a5e6c936949ba6f1dc9c8f7ad7a61c5b 81596 graphics optional exiftags_1.01-0.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHfkh1HYflSXNkfP8RAi86AJ9droz3pig8laYcGaOW7hxq68oxaACeOB1y SPko0twaquda8Pj5pV2NRg0= =o2wd -----END PGP SIGNATURE----- Accepted: exiftags_1.01-0.1.diff.gz to pool/main/e/exiftags/exiftags_1.01-0.1.diff.gz exiftags_1.01-0.1.dsc to pool/main/e/exiftags/exiftags_1.01-0.1.dsc exiftags_1.01-0.1_i386.deb to pool/main/e/exiftags/exiftags_1.01-0.1_i386.deb exiftags_1.01.orig.tar.gz to pool/main/e/exiftags/exiftags_1.01.orig.tar.gz
