Debian: New exiftags packages fix several vulnerabilities

    Date27 Mar 2008
    CategoryDebian
    2884
    Posted ByLinuxSecurity Advisories
    Inadequate EXIF property validation could lead to invalid memory accesses if executed on a maliciously crafted image, potentially including heap corruption and the execution of arbitrary code.
    - ------------------------------------------------------------------------
    Debian Security Advisory DSA-1533-1                  This email address is being protected from spambots. You need JavaScript enabled to view it.
    http://www.debian.org/security/                           Devin Carraway
    March 27, 2008                        http://www.debian.org/security/faq
    - ------------------------------------------------------------------------
    
    Package        : exiftags
    Vulnerability  : insufficient input sanitizing
    Problem type   : local (remote)
    Debian-specific: no
    CVE Id(s)      : CVE-2007-6354 CVE-2007-6355 CVE-2007-6356
    Debian Bug     : 457062
    
    Christian Schmid and Meder Kydyraliev (Google Security) discovered a
    number of vulnerabilities in exiftags, a utility for extracting EXIF
    metadata from JPEG images. The Common Vulnerabilities and Exposures
    project identified the following three problems:
    
    CVE-2007-6354
    
        Inadequate EXIF property validation could lead to invalid memory
        accesses if executed on a maliciously crafted image, potentially
        including heap corruption and the execution of arbitrary code.
    
    CVE-2007-6355
       
        Flawed data validation could lead to integer overflows, causing 
        other invalid memory accesses, also with the potential for memory
        corruption or arbitrary code execution.
    
    CVE-2007-6356
    
        Cyclical EXIF image file directory (IFD) references could cause
        a denial of service (infinite loop).
    
    For the stable distribution (etch), these problems have been fixed in
    version 0.98-1.1+etch1.
    
    The old stable distribution (sarge) cannot be fixed synchronously
    with the Etch version due to a technical limitation in the Debian
    archive management scripts.
    
    For the unstable distribution (sid), these problems have been fixed in
    version 1.01-0.1.
    
    We recommend that you upgrade your exiftags package.
    
    
    Debian 4.0 (stable)
    - -------------------
    
    Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
    
    Source archives:
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1.dsc
        Size/MD5 checksum:      577 7b8743189acd9b4c0a7a25cabb5b753d
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1.diff.gz
        Size/MD5 checksum:     5128 2f82244bd73046f31b07e77a7381dd15
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98.orig.tar.gz
        Size/MD5 checksum:    50195 5a8a4057c4dac1d765da5f9ef4527bdf
    
    alpha architecture (DEC Alpha)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_alpha.deb
        Size/MD5 checksum:    62970 e481f4f8ce70b25a648a2d3678d48e07
    
    amd64 architecture (AMD x86_64 (AMD64))
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_amd64.deb
        Size/MD5 checksum:    57924 a5a6906e8d05beeffc763379a9c45ba2
    
    arm architecture (ARM)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_arm.deb
        Size/MD5 checksum:    56278 b06bf3f7722f034096719c7153fae5bd
    
    i386 architecture (Intel ia32)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_i386.deb
        Size/MD5 checksum:    52558 ceed89333fd99a11d26765390ae35871
    
    ia64 architecture (Intel ia64)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_ia64.deb
        Size/MD5 checksum:    75164 ca893189af6fe68536774bac7dd357a1
    
    mips architecture (MIPS (Big Endian))
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_mips.deb
        Size/MD5 checksum:    61010 a5415b5fb389903c20c431a245fcb3fb
    
    mipsel architecture (MIPS (Little Endian))
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_mipsel.deb
        Size/MD5 checksum:    60064 2961a652e3cb269a0671fe2281b2f017
    
    powerpc architecture (PowerPC)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_powerpc.deb
        Size/MD5 checksum:    54734 23a4389bb781e0a054c1687986ac1b1a
    
    s390 architecture (IBM S/390)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_s390.deb
        Size/MD5 checksum:    58988 38bf328294b2afe633ef99a5b97f3f1e
    
    sparc architecture (Sun SPARC/UltraSPARC)
    
      http://security.debian.org/pool/updates/main/e/exiftags/exiftags_0.98-1.1+etch1_sparc.deb
        Size/MD5 checksum:    56132 d2e1cd3190fe528527beaacc2ef6be3f
    
    
      These files will probably be moved into the stable distribution on
      its next update.
    
    - ---------------------------------------------------------------------------------
    For apt-get: deb http://security.debian.org/ stable/updates main
    For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"22","type":"x","order":"1","pct":55,"resources":[]},{"id":"88","title":"Should be more technical","votes":"5","type":"x","order":"2","pct":12.5,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"13","type":"x","order":"3","pct":32.5,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.