[ubuntu/natty] tiff 3.9.4-5ubuntu5 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Mar 31 15:45:28 UTC 2011
tiff (3.9.4-5ubuntu5) natty; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted
THUNDER_2BITDELTAS data
- debian/patches/CVE-2011-1167.patch: validate bitspersample and
make sure npixels is sane in libtiff/tif_thunder.c.
- CVE-2011-1167
Date: Wed, 30 Mar 2011 12:54:02 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/natty/+source/tiff/3.9.4-5ubuntu5
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 30 Mar 2011 12:54:02 -0400
Source: tiff
Binary: libtiff4 libtiffxx0c2 libtiff4-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: source
Version: 3.9.4-5ubuntu5
Distribution: natty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libtiff-doc - TIFF manipulation and conversion documentation
libtiff-opengl - TIFF manipulation and conversion tools
libtiff-tools - TIFF manipulation and conversion tools
libtiff4 - Tag Image File Format (TIFF) library
libtiff4-dev - Tag Image File Format library (TIFF), development files
libtiffxx0c2 - Tag Image File Format (TIFF) library -- C++ interface
Changes:
tiff (3.9.4-5ubuntu5) natty; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via crafted
THUNDER_2BITDELTAS data
- debian/patches/CVE-2011-1167.patch: validate bitspersample and
make sure npixels is sane in libtiff/tif_thunder.c.
- CVE-2011-1167
Checksums-Sha1:
fac9850350e451c49d57e997b29c34cce696bf8f 1994 tiff_3.9.4-5ubuntu5.dsc
69f925786f171dce89b0d6552c4bc429a3edbc83 19417 tiff_3.9.4-5ubuntu5.debian.tar.gz
Checksums-Sha256:
3ddc7eb0c1b2693ed37d5d065e6d955acfba3037abb6b041f97230e531ab7deb 1994 tiff_3.9.4-5ubuntu5.dsc
b9189077085030fa12a575f8412e3d8db69ff763a872dd1efa062642ace06714 19417 tiff_3.9.4-5ubuntu5.debian.tar.gz
Files:
098d17057a1783472d8cfd7ce6ec309b 1994 libs optional tiff_3.9.4-5ubuntu5.dsc
3940f51301eb2b0110fbd70376ebab8c 19417 libs optional tiff_3.9.4-5ubuntu5.debian.tar.gz
Original-Maintainer: Jay Berkenbilt <qjb at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=riSQ
-----END PGP SIGNATURE-----
More information about the Natty-changes
mailing list