[ubuntu/hardy-security] tiff (delayed), tiff 3.8.2-7ubuntu3.9 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Apr 4 17:04:14 UTC 2011
tiff (3.8.2-7ubuntu3.9) hardy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted
THUNDER_2BITDELTAS data
- debian/patches/z_CVE-2011-1167.patch: validate bitspersample and
make sure npixels is sane in libtiff/tif_thunder.c.
- CVE-2011-1167
Date: Wed, 30 Mar 2011 13:27:02 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/tiff/3.8.2-7ubuntu3.9
-------------- next part --------------
Format: 1.7
Date: Wed, 30 Mar 2011 13:27:02 -0400
Source: tiff
Binary: libtiff4 libtiffxx0c2 libtiff4-dev libtiff-tools libtiff-opengl
Architecture: source
Version: 3.8.2-7ubuntu3.9
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libtiff-opengl - TIFF manipulation and conversion tools
libtiff-tools - TIFF manipulation and conversion tools
libtiff4 - Tag Image File Format (TIFF) library
libtiff4-dev - Tag Image File Format library (TIFF), development files
libtiffxx0c2 - Tag Image File Format (TIFF) library -- C++ interface
Changes:
tiff (3.8.2-7ubuntu3.9) hardy-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via crafted
THUNDER_2BITDELTAS data
- debian/patches/z_CVE-2011-1167.patch: validate bitspersample and
make sure npixels is sane in libtiff/tif_thunder.c.
- CVE-2011-1167
Files:
196649e1d621d085902ef59673ca9d36 1496 libs optional tiff_3.8.2-7ubuntu3.9.dsc
db922d51e915cd965a858a74d1dcc993 23855 libs optional tiff_3.8.2-7ubuntu3.9.diff.gz
Original-Maintainer: Jay Berkenbilt <qjb at debian.org>
More information about the Hardy-changes
mailing list