tiff 4.4.0-4ubuntu3.1 source package in Ubuntu
Changelog
tiff (4.4.0-4ubuntu3.1) kinetic-security; urgency=medium
* SECURITY UPDATE: heap-overflow and double free in tiffcrop
- debian/patches/CVE-2022-2519_2520_2521_2953.patch: Add checks and ends
tiffcrop if -S arguments are not mutually exclusive.
- CVE-2022-2519
- CVE-2022-2520
- CVE-2022-2521
- CVE-2022-2953
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2022-3570_3598.patch: increases buffer sizes for
subroutines in tools/tiffcrop.c.
- CVE-2022-3570
- CVE-2022-3598
* SECURITY UPDATE: out-of-bound write in tiffcrop
- debian/patches/CVE-2022-3599.patch: Revised handling of TIFFTAG_INKNAMES
and related TIFFTAG_NUMBEROFINKS value
- CVE-2022-3599
* SECURITY UPDATE: out-of-bound write in tif_unix
- debian/patches/CVE-2022-3626_3627.patch: disable incompatibility of -Z,
-X, -Y, -z options with any PAGE_MODE_x option
- CVE-2022-3626
- CVE-2022-3627
-- Nishit Majithia <email address hidden> Wed, 02 Nov 2022 14:13:19 +0530
Upload details
- Uploaded by:
- Nishit Majithia
- Uploaded to:
- Kinetic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tiff_4.4.0.orig.tar.bz2 | 2.0 MiB | ce0848109b627eb5442187b6362a8e4809728e4f28fcc5a04940e5afb464caba |
| tiff_4.4.0-4ubuntu3.1.debian.tar.xz | 32.2 KiB | e95fb274c1dea3b6d0929ecca38fe95c34ead095c1bc873b1bd4d2700111e6e6 |
| tiff_4.4.0-4ubuntu3.1.dsc | 2.2 KiB | d36588b2df435767db190e917e6c26039a5e614ee7a40b3173c936eb16a2cec5 |
Available diffs
Binary packages built by this source
- libtiff-dev: No summary available for libtiff-dev in ubuntu kinetic.
No description available for libtiff-dev in ubuntu kinetic.
- libtiff-doc: No summary available for libtiff-doc in ubuntu kinetic.
No description available for libtiff-doc in ubuntu kinetic.
- libtiff-opengl: No summary available for libtiff-opengl in ubuntu kinetic.
No description available for libtiff-opengl in ubuntu kinetic.
- libtiff-opengl-dbgsym: debug symbols for libtiff-opengl
- libtiff-tools: No summary available for libtiff-tools in ubuntu kinetic.
No description available for libtiff-tools in ubuntu kinetic.
- libtiff-tools-dbgsym: debug symbols for libtiff-tools
- libtiff5: No summary available for libtiff5 in ubuntu kinetic.
No description available for libtiff5 in ubuntu kinetic.
- libtiff5-dbgsym: No summary available for libtiff5-dbgsym in ubuntu kinetic.
No description available for libtiff5-dbgsym in ubuntu kinetic.
- libtiff5-dev: No summary available for libtiff5-dev in ubuntu kinetic.
No description available for libtiff5-dev in ubuntu kinetic.
- libtiffxx5: No summary available for libtiffxx5 in ubuntu kinetic.
No description available for libtiffxx5 in ubuntu kinetic.
- libtiffxx5-dbgsym: No summary available for libtiffxx5-dbgsym in ubuntu kinetic.
No description available for libtiffxx5-dbgsym in ubuntu kinetic.
