Format: 1.8 Date: Thu, 12 May 2022 17:05:25 +0200 Source: tiff Binary: libtiff-dev libtiff-opengl libtiff-tools libtiff5 libtiff5-dev libtiffxx5 Architecture: i386 Version: 4.1.0+git191117-2ubuntu0.20.04.3 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: David Fernandez Gonzalez Description: libtiff-dev - Tag Image File Format library (TIFF), development files libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files (transiti libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Changes: tiff (4.1.0+git191117-2ubuntu0.20.04.3) focal-security; urgency=medium . * SECURITY UPDATE: malloc failure in TIFF2RGBA tool - debian/patches/CVE-2020-35522.patch: enforce (configurable) memory limit in tools/tiff2rgba.c. - CVE-2020-35522 * SECURITY UPDATE: null pointer in TIFFReadDirectory - debian/patches/CVE-2022-0561.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0561 * SECURITY UPDATE: null pointer in TIFFFetchStripThing - debian/patches/CVE-2022-0562.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0562 * SECURITY UPDATE: denial of service through assertion failure. - debian/patches/CVE-2022-0865.patch: reset flags to initial state when file has multiple IFD and when bit reversal is needed in libtiff/tif_jbig.c. - CVE-2022-0865 * SECURITY UPDATE: heap buffer overflow in ExtractImageSection - debian/patches/CVE-2022-0891.patch: correct wrong formula for image row size calculation in tools/tiffcrop.c. - CVE-2022-0891 Checksums-Sha1: a6c34c0034cca004f6c8b7705b4a5d2501bb313a 304688 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 552606a926c059517cd5e327d88b26d3ec9aa356 14488 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb a45ecdd69a13709ee9d67c6d8ef876a2037b57cb 11048 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 139dfb6544d786970728d5038a8d168ffb78a61a 394336 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 51c4d131d6751f020f5033cfd806c103355455b6 199040 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 33d45006331e5d67d1bfb1fce12059ac3bb13970 450752 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 9738dcc0c8ff4d43f8b0fd5eeb356c9cad58438c 2260 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 479662f2f7bf3ee535a6eef1f336afc732c686d2 174436 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 0e9b95ba31e724abeccf7df02ca991e601b1a1d0 23360 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb e2107a69ea29c296a41e759febc81b9a497c32f0 6572 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 237945c551f29af1a3e83356e506c4ef9689a4ac 11632 tiff_4.1.0+git191117-2ubuntu0.20.04.3_i386.buildinfo Checksums-Sha256: d42533ae0b10b47aa50bbc384cd3fea14778fc8cd12c27093e7074fd81bf1c2e 304688 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 1fbf3ba20a0cae6e2a0045b8268d40dc18840ee18f52697c7648ac7dc56386af 14488 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 1fd28973dce41cc00ca2525bb191998611f16e806d2eda9d5491c1ac3d64cb51 11048 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 016480d6ca0c6479b3097131950d688c8f8c36e3aebadf15704d83c9de0c32f1 394336 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb dfe75c5d36f7a7beeacfb0feb2746f2f95738d630a21dbcf509f848506a8d880 199040 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 2d11470817d3cd4939b553046b37f742dfafccb9fa95203803799d223770104b 450752 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 15c1b3c277bb587a1b37b5ec51243785beace9e950faaf49f6e04195b9d640a9 2260 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb e916adf38ba73a5d134de9754c9086a33bcdbd31f6e308e3a4d006e5074ec774 174436 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb a35b5f68df9ae26178d6828d14f8498ba618e5d7170f3642a1384193c32cf434 23360 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 2939cf3dc7725d31b300665a96fa7feb83b2d322d622e49800b8cff0b84873ee 6572 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 67f354507f22e15084a4f12a05a672d32e597cc8ed89748d989d36382220c34f 11632 tiff_4.1.0+git191117-2ubuntu0.20.04.3_i386.buildinfo Files: b3774f274be50a6529b477c6517b5677 304688 libdevel optional libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 3fc08c974e9b17ae880d781657ee98f1 14488 debug optional libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 7d507bcbf7439562460bd1376df346ec 11048 graphics optional libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb f082a882fcd31787a055ae7a6597f4d0 394336 debug optional libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 4126d2ce33f690222b25ba43eec591d2 199040 graphics optional libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 656ae747124ea0a7bbaa0379499e23fd 450752 debug optional libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb 9b610a4addb10858cd8af5a8c562cd6b 2260 oldlibs optional libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 00594825d7e1142125531d5d5c658811 174436 libs optional libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 9911e979fa7bb2c05ee83c45706ab20e 23360 debug optional libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_i386.ddeb d8d1b37fb595ac3ae9c88c0b23131678 6572 libs optional libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_i386.deb 5dce994587104e249e617bc581f60449 11632 libs optional tiff_4.1.0+git191117-2ubuntu0.20.04.3_i386.buildinfo Original-Maintainer: Laszlo Boszormenyi (GCS)