Format: 1.8 Date: Thu, 17 Jan 2019 09:21:11 -0500 Source: tiff Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc Architecture: i386 Version: 4.0.6-1ubuntu0.5 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libtiff-doc - TIFF manipulation and conversion documentation libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Changes: tiff (4.0.6-1ubuntu0.5) xenial-security; urgency=medium . * SECURITY UPDATE: NULL dereference in TIFFPrintDirectory - debian/patches/CVE-2018-7456.patch: properly handle color channels in libtiff/tif_dirread.c, libtiff/tif_print.c. - CVE-2018-7456 * SECURITY UPDATE: buffer overflow in LZWDecodeCompat - debian/patches/CVE-2018-8905.patch: fix logic in libtiff/tif_lzw.c. - CVE-2018-8905 * SECURITY UPDATE: DoS in TIFFWriteDirectorySec() - debian/patches/CVE-2018-10963.patch: avoid assertion in libtiff/tif_dirwrite.c. - CVE-2018-10963 * SECURITY UPDATE: multiple overflows - debian/patches/CVE-2018-1710x.patch: Avoid overflows in tools/pal2rgb.c, tools/tiff2bw.c, tools/ppm2tiff.c. - CVE-2018-17100 - CVE-2018-17101 * SECURITY UPDATE: JBIGDecode out-of-bounds write - debian/patches/CVE-2018-18557.patch: fix issue in libtiff/tif_jbig.c, libtiff/tif_read.c. - CVE-2018-18557 * SECURITY UPDATE: NULL pointer dereference in LZWDecode - debian/patches/CVE-2018-18661.patch: add checks to tools/tiff2bw.c. - CVE-2018-18661 Checksums-Sha1: ab1f229a07e1102bafebfba1592392586a3acae6 11460 libtiff-opengl-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb c5d6ed458a6239c3528d6fc43586fe67bb66cc70 10720 libtiff-opengl_4.0.6-1ubuntu0.5_i386.deb 58c03a5ea3d63f1627ca2315f6fafc56b7252e04 264816 libtiff-tools-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb dbf5b86d1e12f33a7b6a8a6369c60f3dc69e318e 228840 libtiff-tools_4.0.6-1ubuntu0.5_i386.deb 8ef7266bfa22376661b215b499db77f4dcdbe8ff 236748 libtiff5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 010ba8e71503309cccedf3430458f05a046fd917 286002 libtiff5-dev_4.0.6-1ubuntu0.5_i386.deb 200d36ad9ffb7edd1786b6637e3f61ff328efec6 159394 libtiff5_4.0.6-1ubuntu0.5_i386.deb cc4740b55e291a6c85820cc3425d78adfc128ea5 14284 libtiffxx5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 2758ab7964cb512eeee0d78606610eacc07c5f9d 6216 libtiffxx5_4.0.6-1ubuntu0.5_i386.deb Checksums-Sha256: 1b5bc5382d6ff7e453348cb8c6089094401168e571c0f3826cb3e03b3c8558e0 11460 libtiff-opengl-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 1d118829ce7845001198b8248c8096df7679cbdeb162ec8b46d9260743091e18 10720 libtiff-opengl_4.0.6-1ubuntu0.5_i386.deb d191d14fc5df58ae9245ad609327e288e38081c45583201e97457d8c34906972 264816 libtiff-tools-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 344e5df041f5f5ed85f420a2d40fc6e986110793a14ab55a16efc74724e069d3 228840 libtiff-tools_4.0.6-1ubuntu0.5_i386.deb 57656313cf29eb778edfc603a5f823a6b7ca4f6bfdc1efcd7926fe54ce7829d9 236748 libtiff5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 3deeb65887f3603ce6ea0ccc1534472ab05a8cce6e3843596f55b2ac7e8c2a4c 286002 libtiff5-dev_4.0.6-1ubuntu0.5_i386.deb 4208fea95546ab484c6b531451a2464c5ef0c2f4ce9126faef8fabf0381689fc 159394 libtiff5_4.0.6-1ubuntu0.5_i386.deb d9f6981f765c646b42705eb4b6e5dc4d6ac9b6b949104a6cc32181f054eb4dae 14284 libtiffxx5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb b7754769b55356433753471e3f37e7e2e73dce6e2c39df8618f5b7fb2229f19b 6216 libtiffxx5_4.0.6-1ubuntu0.5_i386.deb Files: c2ece385150b776b114b38c7d3a74162 11460 graphics extra libtiff-opengl-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 4e5ccaea7b627ae83f79ad8579231ae0 10720 graphics optional libtiff-opengl_4.0.6-1ubuntu0.5_i386.deb 7b62a8b13869aedd237ed5585726b0c5 264816 graphics extra libtiff-tools-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb 4ba35a2033c469db0f765178bdafdfbd 228840 graphics optional libtiff-tools_4.0.6-1ubuntu0.5_i386.deb feb6651b21a8d142ccab2ab02bcdf242 236748 libs extra libtiff5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb f86e1879d7853b274c9a803e86bf0a3e 286002 libdevel optional libtiff5-dev_4.0.6-1ubuntu0.5_i386.deb c2698d4dca264cb2ee712603bcd46430 159394 libs optional libtiff5_4.0.6-1ubuntu0.5_i386.deb 8d78f7c80322c29628c5c21bdb38e490 14284 libs extra libtiffxx5-dbgsym_4.0.6-1ubuntu0.5_i386.ddeb eccac1904616927ffcdf7c369827b952 6216 libs optional libtiffxx5_4.0.6-1ubuntu0.5_i386.deb Original-Maintainer: Ondřej Surý