Jay Berkenbilt <q...@debian.org> wrote: > Moritz Muehlenhoff <j...@inutil.org> wrote: > >> Package: tiff >> Severity: grave >> Tags: security >> Justification: user security hole >> >> Another buffer overflow, please see here for details: >> https://bugzilla.redhat.com/show_bug.cgi?id=860198 > > I have 3.9.4-5+squeeze6, built against squeeze, ready to upload. Should > I proceed? The patch is attached.
I'm sorry, I put 4777 instead of 4447 in the CVE number. I'm preparing it again except the changelog says 4447 and the patch is named CVE-2012-4447.patch. Ugh. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
