Report forwarded
to debian-bugs-dist@lists.debian.org, Debian Forensics <forensics-devel@lists.alioth.debian.org>: Bug#779696; Package metacam.
(Wed, 04 Mar 2015 06:57:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Henri Salo <henri@nerv.fi>:
New Bug report received and forwarded. Copy sent to Debian Forensics <forensics-devel@lists.alioth.debian.org>.
(Wed, 04 Mar 2015 06:57:06 GMT) (full text, mbox, link).
Package: metacam
Version: 1.2-6
Severity: important
Tags: security
metacam crashes when using following example input file fuzzed with AFL
<http://lcamtuf.coredump.cx/afl/>.
727e57e1d8f6a88bdefee47198ff8ab94fe2e1dc afl-metacam-sample-002.jpg
Starting program: metacam afl-metacam-sample-002.jpg
File: afl-metacam-sample-002.jpg
Standard Fields -----------------------------------
Make: EASTMAN KODAK COMPANY
Model: KODAK CX4200 DIGITAL CAMERA
Software Version: Ver�on 1.0100
X Resolution: 230 Pixels/Inch
Y Resolution: 230 Pixels/Inch
Bits Per Sample: (1)
YCbCr Positioning: Datum Point
WARNING: Unknown field type 65535
WARNING: Unknown field type 65535
WARNING: Unknown field type 37
WARNING: Unknown field type 136
WARNING: Unknown field type 144
WARNING: Unknown field type 12432
WARNING: Unknown field type 5264
WARNING: Unknown field type 10385
WARNING: Unknown field type 145
WARNING: Unknown field type 19602
WARNING: Unknown field type 21650
WARNING: Unknown field type 23698
WARNING: Unknown field type 25746
WARNING: Unknown field type 27794
WARNING: Unknown field type 146
WARNING: Unknown field type 146
WARNING: Unknown field type 29842
WARNING: Unknown field type 25
EXIF Fields ---------------------------------------
Exposure Time: 35882743/38096943 Sec.
Aperture: f59.3514
Exif Image Width: 1705168 pixels
Exif Image Height: 1632 pixels
Exposure Mode: Auto Exposure
White Balance: Auto White Balance
Sensing Method: Single Chip Color Area Sensor
ColorSpace: sRGB
Program received signal SIGSEGV, Segmentation fault.
getRATIONAL (this=<optimized out>) at dpyfuncs.cc:938
938 }
(gdb) bt
#0 getRATIONAL (this=<optimized out>) at dpyfuncs.cc:938
#1 dpyRationalAsDouble (ctx=..., name=<optimized out>, e=..., units=0x0) at dpyfuncs.cc:346
#2 0x000000000040ebe3 in displayTags (driver=driver@entry=0x661010, header=header@entry=0x45820d "EXIF Fields", tag_map=..., known=<optimized out>, verbose=0) at metacam.cc:86
#3 0x000000000040742f in processFile (is=..., fname=<optimized out>, driver=0x661010) at metacam.cc:296
#4 main (argc=<optimized out>, argv=<optimized out>) at metacam.cc:359
#5 0x00007ffff72d1ead in __libc_start_main (main=<optimized out>, argc=<optimized out>, ubp_av=<optimized out>, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>,
stack_end=0x7fffffffe4b8) at libc-start.c:244
#6 0x000000000040c271 in _start ()
(gdb) list
933 17 42 33 43 06 - ?? only on D ??
934 00 00 00 00 00 02 02 - ?? don't know ?? constant
935
936 */
937
938 }
--
Henri Salo
Marked as found in versions metacam/1.2-5.
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org.
(Wed, 04 Mar 2015 07:30:08 GMT) (full text, mbox, link).
Reply sent
to Joao Eriberto Mota Filho <eriberto@debian.org>:
You have taken responsibility.
(Mon, 21 Jan 2019 01:24:04 GMT) (full text, mbox, link).
Notification sent
to Henri Salo <henri@nerv.fi>:
Bug acknowledged by developer.
(Mon, 21 Jan 2019 01:24:04 GMT) (full text, mbox, link).
From: Joao Eriberto Mota Filho <eriberto@debian.org>
To: 779696-close@bugs.debian.org
Subject: Bug#779696: fixed in metacam 1.2-11
Date: Mon, 21 Jan 2019 01:20:49 +0000
Source: metacam
Source-Version: 1.2-11
We believe that the bug you reported is fixed in the latest version of
metacam, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 779696@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Joao Eriberto Mota Filho <eriberto@debian.org> (supplier of updated metacam package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 20 Jan 2019 15:33:04 -0200
Source: metacam
Binary: metacam
Architecture: source
Version: 1.2-11
Distribution: unstable
Urgency: medium
Maintainer: Debian Security Tools <team+pkg-security@tracker.debian.org>
Changed-By: Joao Eriberto Mota Filho <eriberto@debian.org>
Description:
metacam - extract EXIF information from digital camera files
Closes: 779695779696779697
Changes:
metacam (1.2-11) unstable; urgency=medium
.
[ Joao Eriberto Mota Filho ]
* Using new DH level format. Consequently:
- debian/compat: removed.
- debian/control: changed from 'debhelper' to 'debhelper-compat' in
Build-Depends field.
* debian/copyright:
- Added rights for Aleksey Kravchenko.
- Updated packaging copyright years.
.
[ Aleksey Kravchenko ]
* Add Upstream Metadata file.
* Bump std-version to 4.3.0.
* d/patches:
- Support DEB_BUILD_OPTIONS=noopt and honour CPPFLAGS.
- Fix crashes on ill-formed Jpeg images (Closes: #779695, #779696).
- Fix crash on reading a long string field (Closes: #779697).
- Fix crash on certain Canon flash modes (LP: #298580).
Checksums-Sha1:
74b90387324519a3b64b9cf513039dca4c03b292 1953 metacam_1.2-11.dsc
23420155a6f9e153c21092878bbdedfd7e875d68 22360 metacam_1.2-11.debian.tar.xz
f97f35e7984b85561554e5ca8573a0fded77e2a3 4921 metacam_1.2-11_source.buildinfo
Checksums-Sha256:
df19ac00f1dbaad7a53f85c8010afdfbfcea90f91458a9278843fd20b6a733fd 1953 metacam_1.2-11.dsc
370f7709d1d376c4bbedfc33689f7c4a59b4bddc6abfcbf33f9bd7f017582750 22360 metacam_1.2-11.debian.tar.xz
be6d10e3271cc893ec8995820260e2f798d3d1bf3cd0a5432a74d9769485c670 4921 metacam_1.2-11_source.buildinfo
Files:
fb59166861de0e3feb0840eef56e7ab2 1953 graphics optional metacam_1.2-11.dsc
3f8f408dbf5f81cd5fb165d7a37709bd 22360 graphics optional metacam_1.2-11.debian.tar.xz
eb24be65050dac80ed84786bb1ea0d3b 4921 graphics optional metacam_1.2-11_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=vjnp
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sat, 23 Feb 2019 07:31:55 GMT) (full text, mbox, link).
Debbugs is free software and licensed under the terms of the GNU General
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
