Secunia Security Advisory - Debian has issued an update for exiftags. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
e36a09229b5d8a02d2fecff081b940fe562d1857cbebb36482332d3f962a5de7
----------------------------------------------------------------------
A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI
has been released. The new version includes many new and advanced
features, which makes it even easier to stay patched.
Download and test it today:
https://psi.secunia.com/
Read more about this new version:
https://psi.secunia.com/?page=changelog
----------------------------------------------------------------------
TITLE:
Debian update for exiftags
SECUNIA ADVISORY ID:
SA29580
VERIFY ADVISORY:
http://secunia.com/advisories/29580/
CRITICAL:
Moderately critical
IMPACT:
DoS, System access
WHERE:
>From remote
OPERATING SYSTEM:
Debian GNU/Linux 4.0
http://secunia.com/product/13844/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/
DESCRIPTION:
Debian has issued an update for exiftags. This fixes some
vulnerabilities, which potentially can be exploited by malicious
people to cause a DoS (Denial of Service) or compromise a vulnerable
system.
For more information:
SA28110
SOLUTION:
Apply updated packages.
-- Debian 4.0 (stable) --
Source archives:
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1.dsc
Size/MD5 checksum:577 7b8743189acd9b4c0a7a25cabb5b753d
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1.diff.gz
Size/MD5 checksum: 5128 2f82244bd73046f31b07e77a7381dd15
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98.orig.tar.gz
Size/MD5 checksum:50195 5a8a4057c4dac1d765da5f9ef4527bdf
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_alpha.deb
Size/MD5 checksum:62970 e481f4f8ce70b25a648a2d3678d48e07
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_amd64.deb
Size/MD5 checksum:57924 a5a6906e8d05beeffc763379a9c45ba2
arm architecture (ARM)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_arm.deb
Size/MD5 checksum:56278 b06bf3f7722f034096719c7153fae5bd
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_i386.deb
Size/MD5 checksum:52558 ceed89333fd99a11d26765390ae35871
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_ia64.deb
Size/MD5 checksum:75164 ca893189af6fe68536774bac7dd357a1
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_mips.deb
Size/MD5 checksum:61010 a5415b5fb389903c20c431a245fcb3fb
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_mipsel.deb
Size/MD5 checksum:60064 2961a652e3cb269a0671fe2281b2f017
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_powerpc.deb
Size/MD5 checksum:54734 23a4389bb781e0a054c1687986ac1b1a
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_s390.deb
Size/MD5 checksum:58988 38bf328294b2afe633ef99a5b97f3f1e
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_sparc.deb
Size/MD5 checksum:56132 d2e1cd3190fe528527beaacc2ef6be3f
-- Debian GNU/Linux unstable alias sid --
Fixed in version 1.01-0.1.
ORIGINAL ADVISORY:
http://lists.debian.org/debian-security-announce/2008/msg00101.html
OTHER REFERENCES:
SA28110:
http://secunia.com/advisories/28110/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------