Bug 91606

Summary:	media-libs/pdflib Vulnerabilities in included tiff
Product:	Gentoo Security	Reporter:	Sune Kloppenborg Jeppesen (RETIRED) <jaervosz>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED INVALID
Severity:	normal	CC:	seemant
Priority:	High
Version:	unspecified
Hardware:	All
OS:	All
URL:	http://bugzilla.remotesensing.org/show_bug.cgi?id=843
Whiteboard:	B2? [upstream] koon
Package list:		Runtime testing required:	---

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2005-05-05 13:10:49 UTC

New vulnerabilities were discovered in libtiff (bug #91584). Not sure wether this applies to our pdflib as well.

CC'ing seemant as he seems to be the most active committer (any chance you could commit a metadata.xml file?).

Comment 1 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2005-05-11 07:26:46 UTC

Seemant please advise.

Comment 2 Thierry Carrez (RETIRED) gentoo-dev

2005-05-16 04:58:24 UTC

I asked upstream for confirmation.

Comment 3 Thierry Carrez (RETIRED) gentoo-dev

2005-05-17 00:30:15 UTC

Upstream will double-check it. If they are vulnerable, they may only fix it in
the 6.x version...

Comment 4 Thierry Carrez (RETIRED) gentoo-dev

2005-06-06 04:37:59 UTC

Upstream answer: PDFlib 5.0.4 and 6.0.1 are not affected by this problem.