This bug was fixed in the package exactimage - 0.9.1-5
---
exactimage (0.9.1-5) unstable; urgency=high
* Fix CVE-2015-3885: Integer overflow in the ljpeg_start function in dcraw
* debian/patches:
- Add CVE-2015-3885.patch, Avoid overflow in ljpeg_start()
(Closes: #786785
Upstream fixed it in https://svn.exactcode.de/exact-image/trunk@2055
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1425472
Title:
bardecode crashes with buffer overflow
To manage notifications abou
** Branch linked: lp:debian/experimental/exactimage
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1425472
Title:
bardecode crashes with buffer overflow
To manage notifications about this bug go to:
The attachment "bardecode_code128_bufferoverflow.patch" seems to be a
patch. If it isn't, please remove the "patch" flag from the attachment,
remove the "patch" tag, and if you are a member of the ~ubuntu-
reviewers, unsubscribe the team.
[This is an automated message performed by a Launchpad use
Fixed in Debian's exactimage 0.9.1-2
** Also affects: exactimage (Debian)
Importance: Undecided
Status: New
** Changed in: exactimage (Debian)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubunt
** Changed in: exactimage (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1425472
Title:
bardecode crashes with buffer overflow
To manage notifications about
Attached is the patch from Debian
** Patch added: "bardecode_code128_bufferoverflow.patch"
https://bugs.launchpad.net/ubuntu/+source/exactimage/+bug/1425472/+attachment/4327143/+files/bardecode_code128_bufferoverflow.patch
--
You received this bug notification because you are a member of Ubu
