Oval Definition:oval:org.mitre.oval:def:13502
Revision Date:2014-06-23Version:20
Title:DSA-1912-2 advi -- integer overflow
Description:Due to the fact that advi, an active DVI previewer and presenter, statically links against camlimages it was neccessary to rebuilt it in order to incorporate the latest security fixes for camlimages, which could lead to integer overflows via specially crafted TIFF files or GIFF and JPEG images. For the stable distribution, these problems have been fixed in version 1.6.0-13+lenny2. Due to a bug in the archive system, the fix for the oldstable distribution cannot be released at the same time. These problems will be fixed in version 1.6.0-12+etch2, once it is available. For the testing distribution and the unstable distribution, these problems have been fixed in version 1.6.0-14+b1. We recommend that you upgrade your advi package.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-2660
CVE-2009-3296
DSA-1912-2
Platform(s):Debian GNU/Linux 5.0
Product(s):advi
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND advi-examples DPKG is earlier than 1.6.0-13+lenny2
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is ia64
  • OR Installed architecture is mips
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND advi DPKG is earlier than 1.6.0-13+lenny2
    • BACK