Format: 1.8 Date: Thu, 12 May 2022 17:05:25 +0200 Source: tiff Binary: libtiff-dev libtiff-opengl libtiff-tools libtiff5 libtiff5-dev libtiffxx5 Architecture: armhf Version: 4.1.0+git191117-2ubuntu0.20.04.3 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: David Fernandez Gonzalez Description: libtiff-dev - Tag Image File Format library (TIFF), development files libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files (transiti libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Changes: tiff (4.1.0+git191117-2ubuntu0.20.04.3) focal-security; urgency=medium . * SECURITY UPDATE: malloc failure in TIFF2RGBA tool - debian/patches/CVE-2020-35522.patch: enforce (configurable) memory limit in tools/tiff2rgba.c. - CVE-2020-35522 * SECURITY UPDATE: null pointer in TIFFReadDirectory - debian/patches/CVE-2022-0561.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0561 * SECURITY UPDATE: null pointer in TIFFFetchStripThing - debian/patches/CVE-2022-0562.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0562 * SECURITY UPDATE: denial of service through assertion failure. - debian/patches/CVE-2022-0865.patch: reset flags to initial state when file has multiple IFD and when bit reversal is needed in libtiff/tif_jbig.c. - CVE-2022-0865 * SECURITY UPDATE: heap buffer overflow in ExtractImageSection - debian/patches/CVE-2022-0891.patch: correct wrong formula for image row size calculation in tools/tiffcrop.c. - CVE-2022-0891 Checksums-Sha1: 79a28116779d8f9ec2a99b44237b2f0e746f54e4 265588 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb d279090cd2e39a44334622541774b42510b01d7a 15484 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 963405548c3958e87651ee59132da6c0f906432f 9936 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 4f9049f67105e6e8b2a5ca278da0d04bce0c2122 432400 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 7693f2f382f3b82fdd4cb8073ef0b1dedc5589fa 180520 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 1b13913f860818e3db1151d845aec360bf4bdab2 481384 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 9b43eba4204d6eb2b3c8d6274e11de31256684cc 2260 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb a4663f83a1d2d24ad2058847ee9859ee97034c49 143072 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb f50d0969e4577c79a547aa37fe0dacdd1b27567b 24324 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 3650e608c61e36299bff7258422c9dcab25db096 5792 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 698ccced59bb828573bdcb222fefb047848def4f 11510 tiff_4.1.0+git191117-2ubuntu0.20.04.3_armhf.buildinfo Checksums-Sha256: a6dba4f2576b558e7b94676545068fdb987ce84d70c92fa30353a4a5e84534e3 265588 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 07dc016de803cda500fcadcd4d1afc720f017042b93ddbea9c22011a0ee7824c 15484 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 73ec9962f801b79e4ad01c50c750d45eecde4b76d3f213a43309053a59d8c1bc 9936 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 609efe6ed74d1d7c1225a554cf6f77eabc86ce02c0cfdb5964e31e29b0d02324 432400 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 6617bb83ef69dacb372f482e37d97ee52888fb4249c0f6ad0b6d8e4f04a932ae 180520 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 47e9042f2a9761c4110e82bba885662d94a261a971ae91f5fea81d467e40ebee 481384 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 990366914c40a12cc4906ed1a1d891422039986678607ad92c4960118721d540 2260 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb f1b34ccd0e976fe5dcce9bb482d2555cbcf33e463586787a62fbdba1a3be8313 143072 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 58b0bd6baaae7ed36f39b747b7373c9e940455ce904b2877f6c97a86a530ed8b 24324 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 932abdc7bb7b2ed2cf4bc5057d8a7e5135259710c131e01ff731838e166bbaff 5792 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 3ae87781a7cc585628b4aedcb373fdacee16165fcef9d3e60721a0258c3f5c87 11510 tiff_4.1.0+git191117-2ubuntu0.20.04.3_armhf.buildinfo Files: e06f60207e78fe7a56aeafc48876ced3 265588 libdevel optional libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb de310ae10ce37f65ec513fbba29fa52e 15484 debug optional libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb e410be46450fa35a08ff84bde9caa66f 9936 graphics optional libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 3a93c812af568eb1f9ba9efe6b8e3c0e 432400 debug optional libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 4fe346ab64b259055c08eccad4bca51e 180520 graphics optional libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb a377ba320aa293e60460bcdd4b5838e3 481384 debug optional libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 177550483edc639a8dd59a9763d98e17 2260 oldlibs optional libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 97cb231482a23c3c151e4951c5167c5a 143072 libs optional libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 99b218bb24e0e398c58055103582f8a7 24324 debug optional libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_armhf.ddeb 246f1e4b635427b2e0cbdd9b2f796a4b 5792 libs optional libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_armhf.deb 46a5bffb8bbc2ed23a3674f4d58769d8 11510 libs optional tiff_4.1.0+git191117-2ubuntu0.20.04.3_armhf.buildinfo Original-Maintainer: Laszlo Boszormenyi (GCS)