Format: 1.8
Date: Thu, 22 Mar 2018 10:16:37 -0400
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: arm64
Version: 4.0.6-1ubuntu0.4
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-028.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Changes:
 tiff (4.0.6-1ubuntu0.4) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: buffer overflow in gif2tiff
     - debian/patches/CVE-2016-3186.patch: check return code in
       tools/gif2tiff.c.
     - CVE-2016-3186
   * SECURITY UPDATE: buffer overflow in gif2tiff
     - debian/patches/CVE-2016-5102.patch: make warning fatal in
       tools/gif2tiff.c.
     - CVE-2016-5102
   * SECURITY UPDATE: multiple overflows
     - debian/patches/CVE-2016-5318.patch: ignore certain fields in
       libtiff/tif_dir.h, libtiff/tif_dirinfo.c, libtiff/tif_dirread.c.
     - CVE-2016-5318
     - CVE-2017-9147
   * SECURITY UPDATE: bmp2tiff issues
     - debian/patches/CVE-2017-5563_9117.patch: add check to
       tools/bmp2tiff.c.
     - CVE-2017-5563
     - CVE-2017-9117
   * SECURITY UPDATE: heap-based buffer overflow in t2p_write_pdf
     - debian/patches/CVE-2017-9935-1.patch: fix transfer function handling
       in libtiff/tif_dir.c, tools/tiff2pdf.c.
     - debian/patches/CVE-2017-9935-2.patch: fix incorrect type for transfer
       table in tools/tiff2pdf.c.
     - CVE-2017-9935
   * SECURITY UPDATE: DoS in TIFFOpen
     - debian/patches/CVE-2017-11613-1.patch: avoid memory exhaustion in
       libtiff/tif_dirread.c.
     - debian/patches/CVE-2017-11613-2.patch: rework fix in
       libtiff/tif_dirread.c.
     - CVE-2017-11613
   * SECURITY UPDATE: TIFFSetupStrips heap overflow in pal2rgb
     - debian/patches/CVE-2017-17095.patch: add workaround to
       tools/pal2rgb.c.
     - CVE-2017-17095
Checksums-Sha1:
 0e66ac9a14a494e0323389b65a9d78594cd89093 12528 libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 c3ad5f09a265f1a67cf90f864af0546add53dadc 10058 libtiff-opengl_4.0.6-1ubuntu0.4_arm64.deb
 e4a9311e41c43c8811c63fae461d43e6653e9f3b 291926 libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 42b1fce3a7c760d37bd1c112dc850e7e4b22523b 199370 libtiff-tools_4.0.6-1ubuntu0.4_arm64.deb
 f1e59aef52a88b048fcb443bffd5ca2a981fb20b 263074 libtiff5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 dfee03139f2e9b75891a873281be5e3d32c5d33c 247374 libtiff5-dev_4.0.6-1ubuntu0.4_arm64.deb
 b16bc93f960ddd1cc06258f3d90e1a0db7b14d10 126270 libtiff5_4.0.6-1ubuntu0.4_arm64.deb
 ba0f84725df0363a74c057fc3b371e568388bf34 15172 libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 c9a7b7229fa77aedd30c738081f59c45685ea324 5762 libtiffxx5_4.0.6-1ubuntu0.4_arm64.deb
Checksums-Sha256:
 4a92cf294d8a23e76a2306a41b88be05c2041f7a355b015150e7d8d9893e9fcd 12528 libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 678e18af1c96fcad33b1e8e43e8aa9d974bd2bc2532168f60d3d4a40650d725d 10058 libtiff-opengl_4.0.6-1ubuntu0.4_arm64.deb
 3153fd0814b5c7799bcee247c32bb75bf6c2f6e5224d6525492f10d0c6738fdd 291926 libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 b3f06780a9d546149b02747478b8783e9601180ff515a2ff06aab776d0b968de 199370 libtiff-tools_4.0.6-1ubuntu0.4_arm64.deb
 8378465691d82f5f969fc08d095f15888640a29b6d1dcaf154c7e5a09cbc3d6e 263074 libtiff5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 391233387eec21871bd1ad4683f00c18bcdd5b76bb37a84bd17ec1fbfb23a262 247374 libtiff5-dev_4.0.6-1ubuntu0.4_arm64.deb
 8713f54c8035e336734515cd21c7551c1a1829fe8fdebe3358fc700735843fd6 126270 libtiff5_4.0.6-1ubuntu0.4_arm64.deb
 e8f1592182a657b36e9be8d08061b62daa3f8589534eb5f46ac2f987bf717846 15172 libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 39083c5d1d7fc303d18d5d25d18ebef5d5a03bc39cf9f35892e97e94a73f7599 5762 libtiffxx5_4.0.6-1ubuntu0.4_arm64.deb
Files:
 8b85cde029b61de45a219c93ff9ab6bf 12528 graphics extra libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 8e1a94088a624035dfd204d2145a3e82 10058 graphics optional libtiff-opengl_4.0.6-1ubuntu0.4_arm64.deb
 71d7aa8068e6037b6c26893c33bf7915 291926 graphics extra libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 c6087d4b1da378a3b8f9370bac162b02 199370 graphics optional libtiff-tools_4.0.6-1ubuntu0.4_arm64.deb
 cb918273594683771df7bbb5e39cd8f6 263074 libs extra libtiff5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 34904d669020e6368509436bf45680aa 247374 libdevel optional libtiff5-dev_4.0.6-1ubuntu0.4_arm64.deb
 e613b5bd659d5bdd18e4259a36494bdc 126270 libs optional libtiff5_4.0.6-1ubuntu0.4_arm64.deb
 b88a65c8b258007862ee61eaaf4e877f 15172 libs extra libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb
 d421490799ecfb30273d5478c034ed57 5762 libs optional libtiffxx5_4.0.6-1ubuntu0.4_arm64.deb
Original-Maintainer: Ondřej Surý <ondrej@debian.org>