Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#35510 - [libtiff] CVE-2013-1960 and CVE-2013-1961
Attached to Project:
Arch Linux
Opened by rob.til.freedman (rtfreedman) - Monday, 27 May 2013, 22:13 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 28 May 2013, 01:46 GMT
Opened by rob.til.freedman (rtfreedman) - Monday, 27 May 2013, 22:13 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 28 May 2013, 01:46 GMT
|
Details http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961 Not sure if FORTIFY_SOURCE just lead to a crash |
This task depends upon
Closed by Eric Belanger (Snowman)
Tuesday, 28 May 2013, 01:46 GMT
Reason for closing: Fixed
Additional comments about closing: libtiff-4.0.3-2
Tuesday, 28 May 2013, 01:46 GMT
Reason for closing: Fixed
Additional comments about closing: libtiff-4.0.3-2
https://bugzilla.redhat.com/show_bug.cgi?id=952158
https://bugzilla.redhat.com/show_bug.cgi?id=952131