[ubuntu/natty-security] tiff 3.9.4-5ubuntu6.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed Apr 4 21:03:31 UTC 2012
tiff (3.9.4-5ubuntu6.1) natty-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
tiffdump
- debian/patches/CVE-2010-4665.patch: prevent integer overflow in
tools/tiffdump.c.
- CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
- debian/patches/CVE-2012-1173.patch: use TIFFSafeMultiply in
libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
- CVE-2012-1173
Date: Mon, 02 Apr 2012 10:55:03 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/tiff/3.9.4-5ubuntu6.1
-------------- next part --------------
Format: 1.8
Date: Mon, 02 Apr 2012 10:55:03 -0400
Source: tiff
Binary: libtiff4 libtiffxx0c2 libtiff4-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: source
Version: 3.9.4-5ubuntu6.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libtiff-doc - TIFF manipulation and conversion documentation
libtiff-opengl - TIFF manipulation and conversion tools
libtiff-tools - TIFF manipulation and conversion tools
libtiff4 - Tag Image File Format (TIFF) library
libtiff4-dev - Tag Image File Format library (TIFF), development files
libtiffxx0c2 - Tag Image File Format (TIFF) library -- C++ interface
Changes:
tiff (3.9.4-5ubuntu6.1) natty-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible code execution via
tiffdump
- debian/patches/CVE-2010-4665.patch: prevent integer overflow in
tools/tiffdump.c.
- CVE-2010-4665
* SECURITY UPDATE: arbitrary code execution via size overflow
- debian/patches/CVE-2012-1173.patch: use TIFFSafeMultiply in
libtiff/tif_getimage.c, fix TIFFSafeMultiply in libtiff/tiffiop.h.
- CVE-2012-1173
Checksums-Sha1:
a5b7822ab66a93e9d3f6f16603cfb892e238e268 2002 tiff_3.9.4-5ubuntu6.1.dsc
4da2360088c01c5ab47e23183c4aa531ff33a47c 21153 tiff_3.9.4-5ubuntu6.1.debian.tar.gz
Checksums-Sha256:
14e2e48cb955187565e39cd5ba2632c3e6796f26bfe97def436b08bf0b0ed527 2002 tiff_3.9.4-5ubuntu6.1.dsc
61c9c5e119aad55ce814eea0797800477bf94576aa5b83609f072e3a03df6cfc 21153 tiff_3.9.4-5ubuntu6.1.debian.tar.gz
Files:
5cdc4ba720a2316c8fceb0556a102426 2002 libs optional tiff_3.9.4-5ubuntu6.1.dsc
5182bd3442d05526007b1fc13e340edc 21153 libs optional tiff_3.9.4-5ubuntu6.1.debian.tar.gz
Original-Maintainer: Jay Berkenbilt <qjb at debian.org>
More information about the Natty-changes
mailing list