Jay Berkenbilt <[email protected]> wrote: > Moritz Muehlenhoff <[email protected]> wrote: > >> Package: tiff >> Severity: grave >> Tags: security >> Justification: user security hole >> >> Another buffer overflow, please see here for details: >> https://bugzilla.redhat.com/show_bug.cgi?id=860198 > > I have 3.9.4-5+squeeze6, built against squeeze, ready to upload. Should > I proceed? The patch is attached.
I'm sorry, I put 4777 instead of 4447 in the CVE number. I'm preparing it again except the changelog says 4447 and the patch is named CVE-2012-4447.patch. Ugh. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
