Debian Package Tracker

From: Devin Carraway <devin@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted exiftags 0.98-1.1+etch1 (source amd64)
Date: Sat, 26 Jul 2008 09:40:30 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon, 24 Mar 2008 00:58:02 -0700
Source: exiftags
Binary: exiftags
Architecture: source amd64
Version: 0.98-1.1+etch1
Distribution: stable-security
Urgency: high
Maintainer: Mike Mattice <mattice@debian.org>
Changed-By: Devin Carraway <devin@debian.org>
Description: 
 exiftags   - Utility to read Exif tags from a digital camera JPEG file
Changes: 
 exiftags (0.98-1.1+etch1) stable-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Backport upstream fixes from v1.01:
     - CVE-2007-6354, CVE-2007-6355: integer overflow and memory access
       errors through inadequate EXIF data validation
     - CVE-2007-6356: recursive IFD references in EXIF data would cause
       a denial of service via infinite loop
Files: 
 7b8743189acd9b4c0a7a25cabb5b753d 577 graphics optional exiftags_0.98-1.1+etch1.dsc
 2f82244bd73046f31b07e77a7381dd15 5128 graphics optional exiftags_0.98-1.1+etch1.diff.gz
 a5a6906e8d05beeffc763379a9c45ba2 57924 graphics optional exiftags_0.98-1.1+etch1_amd64.deb
 5a8a4057c4dac1d765da5f9ef4527bdf 50195 graphics optional exiftags_0.98.orig.tar.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH6XoKXm3vHE4uyloRAo83AJ9xq0Tkv34X2ppgMzLwpBFcae9GogCg4wAQ
X3XIBC39LgiyoxUcZvGqrJs=
=v9Uq
-----END PGP SIGNATURE-----


Accepted:
exiftags_0.98-1.1+etch1.diff.gz
  to pool/main/e/exiftags/exiftags_0.98-1.1+etch1.diff.gz
exiftags_0.98-1.1+etch1.dsc
  to pool/main/e/exiftags/exiftags_0.98-1.1+etch1.dsc
exiftags_0.98-1.1+etch1_amd64.deb
  to pool/main/e/exiftags/exiftags_0.98-1.1+etch1_amd64.deb

News for package exiftags