tiff 3.7.3-1ubuntu1.4 source package in Ubuntu
Changelog
tiff (3.7.3-1ubuntu1.4) breezy-security; urgency=low
* SECURITY UPDATE: Arbitrary command execution with crafted long file names.
* Add debian/patches/tiffsplit-fname-overflow.patch:
- tools/tiffsplit.c: Use snprintf instead of strcpy for copying the
user-specified file name into a statically sized buffer.
- CVE-2006-2656
* Add debian/patches/tiff2pdf-octal-printf.patch:
- tools/tiff2pdf.c: Fix buffer overflow due to wrong printf for octal
signed char (it printed a signed integer, which overflew the buffer and
was wrong anyway).
-- Martin Pitt <email address hidden> Fri, 2 Jun 2006 16:27:56 +0000
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Breezy
- Original maintainer:
- Jay Berkenbilt
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tiff_3.7.3.orig.tar.gz | 1.2 MiB | 9aa62191202e8f94b6c0fbf7051ff815a6c8d300e71af859fb63725d1a8c638c |
| tiff_3.7.3-1ubuntu1.4.diff.gz | 11.1 KiB | 8b213240f2712a6dbf23e4f75cf6c3bca2c648b674e11e7537c090aafbc06723 |
| tiff_3.7.3-1ubuntu1.4.dsc | 756 bytes | f5f44115ececbfae8473a12db44a9c225a8ccf5e2c04d0d931780676dc0dd2a5 |
Binary packages built by this source
- libtiff-opengl: No summary available for libtiff-opengl in ubuntu breezy.
No description available for libtiff-opengl in ubuntu breezy.
- libtiff-tools: No summary available for libtiff-tools in ubuntu breezy.
No description available for libtiff-tools in ubuntu breezy.
- libtiff4: No summary available for libtiff4 in ubuntu breezy.
No description available for libtiff4 in ubuntu breezy.
- libtiff4-dev: No summary available for libtiff4-dev in ubuntu breezy.
No description available for libtiff4-dev in ubuntu breezy.
- libtiffxx0c2: No summary available for libtiffxx0c2 in ubuntu breezy.
No description available for libtiffxx0c2 in ubuntu breezy.
