Login
Newsletter
Werbung

Sicherheit: Zahlenüberlauf in libexif
Aktuelle Meldungen Distributionen
Name: Zahlenüberlauf in libexif
ID: TLSA-2007-44
Distribution: TurboLinux
Plattformen: Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal, TurboLinux wizpy
Datum: Do, 23. August 2007, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2645
Applikationen: libexif

Originalnachricht

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2007-44
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Original released date: 22 Aug 2007
Last revised: 22 Aug 2007

Package: libexif

Summary: libexif Integer overflow

More information:
Libexif is a library for parsing, editing, and saving EXIF data. It is
intended to replace lots of redundant implementations in command-line
utilities and programs with GUIs.

Remote attackers to cause a denial of service.

Impact:
Integer overflow and denial of service (crash) or possibly execute
arbitrary code.

Affected Products:
- wizpy
- Turbolinux Appliance Server 2.0
- Turbolinux FUJI
- Turbolinux 10 Server x64 Edition
- Turbolinux 10 Server
- Turbolinux Home
- Turbolinux 10 F...
- Turbolinux 10 Desktop
- Turbolinux Multimedia
- Turbolinux Personal


<wizpy>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 a3434dd19badafcfee5cc3b51306ce1f

Binary Packages
Size: MD5

libexif-0.6.9-6.i386.rpm
78571 f3a7146959d79eefe4111573a05e5e05

<Turbolinux Appliance Server 2.0>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 0e67379d723dd9ab52f7046e9622b4fa

Binary Packages
Size: MD5

libexif-0.6.9-6.i586.rpm
81536 92db7d2d9f92a491b674eb3d4fe973ad

<Turbolinux FUJI>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 af800bf09a8add0325d9649ecfc201f0

Binary Packages
Size: MD5

libexif-0.6.9-6.i686.rpm
91003 6efbb0442646a018797cda49a9e1c043
libexif-devel-0.6.9-6.i686.rpm
62523 b74558110e461e805375116cab75dd6e

<Turbolinux 10 Server x64 Edition>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 5d289b45a999596cb82e2db8d79cd1ac

Binary Packages
Size: MD5

libexif-0.6.9-6.x86_64.rpm
84971 2e903ecd90394c4e78f72706f302fc71
libexif-debug-0.6.9-6.x86_64.rpm
111766 888d2d7f0c646b02021413f58c5f2860
libexif-devel-0.6.9-6.x86_64.rpm
55921 bd5fc71b70be960ff89ab1a1ddddaded

<Turbolinux 10 Server>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 0e67379d723dd9ab52f7046e9622b4fa

Binary Packages
Size: MD5

libexif-0.6.9-6.i586.rpm
81536 92db7d2d9f92a491b674eb3d4fe973ad
libexif-debug-0.6.9-6.i586.rpm
113736 9ec68ace18b74fdd0ba55f8cc2d5f034
libexif-devel-0.6.9-6.i586.rpm
55281 a3e322a71ae1371a594a932f0561537c

<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux
Multimedia, Turbolinux Personal>

Source Packages
Size: MD5

libexif-0.6.9-6.src.rpm
525174 0d237e5adaf8cdd03198b3181c96793d

Binary Packages
Size: MD5

libexif-0.6.9-6.i586.rpm
81975 d12f99839172009256e9619cf0dd3607
libexif-devel-0.6.9-6.i586.rpm
55475 322ea110863b78d9a433b3f37c10676f


References:

CVE
[CVE-2007-2645]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2645

--------------------------------------------------------------------------
Revision History
22 Aug 2007 Initial release
--------------------------------------------------------------------------

Copyright(C) 2007 Turbolinux, Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFGy/hHK0LzjOqIJMwRArBlAJ9cjxj58e50aXhx8NHhsQ4fbCW+MQCfa3qE
OGhofT6NWkENU2YKhRYM3Gc=
=UxW9
-----END PGP SIGNATURE-----
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung