User: Password:
|
|
Subscribe / Log in / New account

Mageia alert MGASA-2013-0385 (libkdcraw)

From:  Mageia Updates <buildsystem-daemon@mageia.org>
To:  updates-announce@ml.mageia.org
Subject:  [updates-announce] MGASA-2013-0385: Updated libkdcraw packages fix CVE-2013-1438 & CVE-2013-1439
Date:  Mon, 23 Dec 2013 18:20:17 +0100
Message-ID:  <20131223172017.782FE53DC3@valstar.mageia.org>

MGASA-2013-0385 - Updated libkdcraw packages fix CVE-2013-1438 & CVE-2013-1439 Publication date: 23 Dec 2013 URL: http://advisories.mageia.org/MGASA-2013-0385.html Type: security Affected Mageia releases: 3 CVE: CVE-2013-1438, CVE-2013-1439 Description: Updated libkdcraw packages fix libraw security vulnerabilities: It was discovered that LibRaw incorrectly handled photo files. If a user or automated system were tricked into processing a specially crafted photo file, applications linked against LibRaw could be made to crash, resulting in a denial of service (CVE-2013-1438, CVE-2013-1439). References: - http://www.ubuntu.com/usn/usn-1978-1/ - https://bugs.mageia.org/show_bug.cgi?id=12074 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1438 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1439 SRPMS: - 3/core/libkdcraw-4.10.5-1.2.mga3


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds