tiff 3.7.4-1ubuntu3.1 source package in Ubuntu
Changelog
tiff (3.7.4-1ubuntu3.1) dapper-security; urgency=low
* SECURITY UPDATE: Arbitrary command execution with crafted long file names.
* Add debian/patches/tiffsplit-fname-overflow.patch:
- tools/tiffsplit.c: Use snprintf instead of strcpy for copying the
user-specified file name into a statically sized buffer.
- CVE-2006-2656
* Add debian/patches/tiff2pdf-octal-printf.patch:
- tools/tiff2pdf.c: Fix buffer overflow due to wrong printf for octal
signed char (it printed a signed integer, which overflew the buffer and
was wrong anyway).
-- Martin Pitt <email address hidden> Fri, 2 Jun 2006 18:15:30 +0200
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Dapper
- Original maintainer:
- Jay Berkenbilt
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tiff_3.7.4.orig.tar.gz | 1.2 MiB | ede80aa0760275a518143761df1bd21e202dca03873e9fa4e0336ab986b0bd81 |
| tiff_3.7.4-1ubuntu3.1.diff.gz | 12.7 KiB | 13b0ced4f00277f1a5b608b12349862b933bf8f00e8f35227419bf341c2241d4 |
| tiff_3.7.4-1ubuntu3.1.dsc | 758 bytes | 74bf5e17dd85a25b2cd68b8835e2649df48a8cf75c75f92cf15f73d353c7cdfc |
Binary packages built by this source
- libtiff-opengl: No summary available for libtiff-opengl in ubuntu dapper.
No description available for libtiff-opengl in ubuntu dapper.
- libtiff-tools: No summary available for libtiff-tools in ubuntu dapper.
No description available for libtiff-tools in ubuntu dapper.
- libtiff4: No summary available for libtiff4 in ubuntu dapper.
No description available for libtiff4 in ubuntu dapper.
- libtiff4-dev: No summary available for libtiff4-dev in ubuntu dapper.
No description available for libtiff4-dev in ubuntu dapper.
- libtiffxx0c2: No summary available for libtiffxx0c2 in ubuntu dapper.
No description available for libtiffxx0c2 in ubuntu dapper.
