[ubuntu/dapper-security] tiff (delayed), tiff 3.7.4-1ubuntu3.11 (Accepted)

[Ubuntu Installer]

tiff (3.7.4-1ubuntu3.11) dapper-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via crafted
    THUNDER_2BITDELTAS data
    - debian/patches/z_CVE-2011-1167.patch: validate bitspersample and
      make sure npixels is sane in libtiff/tif_thunder.c.
    - CVE-2011-1167

Date: Wed, 30 Mar 2011 13:34:17 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Jay Berkenbilt <qjb at debian.org>
https://launchpad.net/ubuntu/dapper/+source/tiff/3.7.4-1ubuntu3.11
-------------- next part --------------
Format: 1.7
Date: Wed, 30 Mar 2011 13:34:17 -0400
Source: tiff
Binary: libtiff-opengl libtiffxx0c2 libtiff4 libtiff-tools libtiff4-dev
Architecture: source
Version: 3.7.4-1ubuntu3.11
Distribution: dapper-security
Urgency: low
Maintainer: Jay Berkenbilt <qjb at debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff4   - Tag Image File Format (TIFF) library
 libtiff4-dev - Tag Image File Format library (TIFF), development files
 libtiffxx0c2 - Tag Image File Format (TIFF) library -- C++ interface
Changes: 
 tiff (3.7.4-1ubuntu3.11) dapper-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via crafted
     THUNDER_2BITDELTAS data
     - debian/patches/z_CVE-2011-1167.patch: validate bitspersample and
       make sure npixels is sane in libtiff/tif_thunder.c.
     - CVE-2011-1167
Files: 
 9a6dfe139833d6bfb8b2fbc67716220c 1407 libs optional tiff_3.7.4-1ubuntu3.11.dsc
 5a188132e4b15d2799285c1c48941cb3 25828 libs optional tiff_3.7.4-1ubuntu3.11.diff.gz