tiff 3.6.1-5ubuntu0.3 source package in Ubuntu
Changelog
tiff (3.6.1-5ubuntu0.3) hoary-security; urgency=low
* SECURITY UPDATE: DoS and arbitrary code execution with crafted TIFF files.
* Backported security relevant fixes from stable 3.8.1 release. See
http://bugzilla.remotesensing.org/show_bug.cgi?id=1102 for reproducer
images.
* libtiff/tif_dirread.c: Fix error reporting in TIFFFetchAnyArray()
(%d in format string without corresponding integer argument).
[CVE-2006-2024]
* libtiff/{tif_pixarlog.c, tif_fax3.c, tif_zip.c}: Properly
restore setfield/getfield methods in cleanup functions to avoid crash on
invalid files. [CVE-2006-2024]
* libtiff/{tif_predict.c, tif_predict.h}: Added new function
TIFFPredictorCleanup() to restore parent decode/encode/field methods.
[CVE-2006-2024]
* libtiff/tif_dirread.c: Check for integer overflow in TIFFFetchData().
[CVE-2006-2025]
* libtiff/tif_jpeg.c: Properly restore setfield/getfield methods in
cleanup functions to avoid double free(). [CVE-2006-2026]
* libtiff/tif_color.c: Check for out-of-bounds values in TIFFXYZToRGB().
[CVE-2006-2120]
* Added CVE to previous changelog.
-- Martin Pitt <email address hidden> Wed, 3 May 2006 11:24:44 +0000
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Hoary
- Original maintainer:
- Jay Berkenbilt
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tiff_3.6.1.orig.tar.gz | 828.9 KiB | ee7deab7d26c22d31e6f5eca8ce14db7f186989818d23d5d648829dfda634957 |
| tiff_3.6.1-5ubuntu0.3.diff.gz | 25.2 KiB | 629534bb5abe48002297707cc345ea1e24282980585de5d7521d23ae2b3d9c31 |
| tiff_3.6.1-5ubuntu0.3.dsc | 681 bytes | a520944258cceb03b4784e0eea75dbd4ba00cd0f437d18c657bc820a42a15fa2 |
Binary packages built by this source
- libtiff-tools: No summary available for libtiff-tools in ubuntu hoary.
No description available for libtiff-tools in ubuntu hoary.
- libtiff4: No summary available for libtiff4 in ubuntu hoary.
No description available for libtiff4 in ubuntu hoary.
- libtiff4-dev: No summary available for libtiff4-dev in ubuntu hoary.
No description available for libtiff4-dev in ubuntu hoary.
