Format: 1.8 Date: Thu, 12 May 2022 17:05:25 +0200 Source: tiff Binary: libtiff-dev libtiff-opengl libtiff-tools libtiff5 libtiff5-dev libtiffxx5 Architecture: ppc64el Version: 4.1.0+git191117-2ubuntu0.20.04.3 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: David Fernandez Gonzalez Description: libtiff-dev - Tag Image File Format library (TIFF), development files libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files (transiti libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Changes: tiff (4.1.0+git191117-2ubuntu0.20.04.3) focal-security; urgency=medium . * SECURITY UPDATE: malloc failure in TIFF2RGBA tool - debian/patches/CVE-2020-35522.patch: enforce (configurable) memory limit in tools/tiff2rgba.c. - CVE-2020-35522 * SECURITY UPDATE: null pointer in TIFFReadDirectory - debian/patches/CVE-2022-0561.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0561 * SECURITY UPDATE: null pointer in TIFFFetchStripThing - debian/patches/CVE-2022-0562.patch: add sanity check to ensure pointer provided to memcpy is not null in libtiff/tif_dirread.c. - CVE-2022-0562 * SECURITY UPDATE: denial of service through assertion failure. - debian/patches/CVE-2022-0865.patch: reset flags to initial state when file has multiple IFD and when bit reversal is needed in libtiff/tif_jbig.c. - CVE-2022-0865 * SECURITY UPDATE: heap buffer overflow in ExtractImageSection - debian/patches/CVE-2022-0891.patch: correct wrong formula for image row size calculation in tools/tiffcrop.c. - CVE-2022-0891 Checksums-Sha1: 2bc8dcc5b244582b1aaad6b73fff480bc86ba70e 331600 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb b7658bdec5eba4959f8f32355ed799f76ec21cca 15748 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 70ff4cde01489212dfb8c05ab723f3169f213c47 11660 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb e85452e9422d515f1d4401c9df5ef6e5e18fa64d 525164 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb b7ea77d6a273a125d87b4846192921fe1402fbfd 220232 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb d143d59844435e87edc110fa6200dbedfc19330c 550788 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 97aaf4156715b6352dc21e326109629fd1ff8e2c 2268 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 5ace1f4de0f7e15ee816cad875118d2451370a40 191712 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 4373b27fc7b3fba619a5fb0e024a405659c289ff 24308 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb ebe5dc019553b1c5b4b10321753efedafaa6dc97 6076 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 5addcb9af051a0515375c77084cdda0e198e1e84 11730 tiff_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.buildinfo Checksums-Sha256: e145e31cc05967523febad45c174f08f39f1d06f0260f74c705722900c72bf07 331600 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb a12e255e234a10e947e715b55323a25f00bc1f78d5bb4fdeab410e759ce7bd65 15748 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 90dbed1f0241188f9d9149d2404e1c7087ced7a6e9c71b96b75bdc21eb758b4b 11660 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb c2563907dfb751e666b1db798933639e6a331ba441aa00b1ae0e2a0c0153f322 525164 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb c8092b1ac917f33e1f3c475923aa96c5980950a3d794a960457e14503f267f81 220232 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb a60c8a2ac210a14714a2f2757b27911b45d5f381e845e7ac796707317def0a49 550788 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb eb4220a6a8f4de921babfe5d2dc25015e8b3b331bdb58c46dbd2bb3557461719 2268 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 4da62e32c40e09c080cabd4d48cbfd135a02c04414a16bbf9cf90e81e8511f2c 191712 libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 57fa52db9e7bd82bab8cfab4ca860e48c41ebf3eb0427bdb2e8accc4064c5896 24308 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 04086f0e876b1b2c6675702fec4e85e515f36cf03263cdd228f32f9421b8b3b5 6076 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 3277aed62b1365542b5eb4b381bdceea213e1321b90a13a55deba9e2e61397aa 11730 tiff_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.buildinfo Files: dd7a55910481ebd9f0c2f38c138ee94d 331600 libdevel optional libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb a41f8b6c7506ab1a6f6d906e25cf129a 15748 debug optional libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 70943a2f6735d42c22d8755887a35f4b 11660 graphics optional libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 088cfd42f517c2a28d8d75be27150875 525164 debug optional libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb 2f1357e346d5458678ec8c8a68117d10 220232 graphics optional libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb fc26704bbcb40ce0f529c7e80ba3fcac 550788 debug optional libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb c897d56caf337730239436e8a2059b39 2268 oldlibs optional libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 8abb7b46fb1df64bdf9ea76f55ce3084 191712 libs optional libtiff5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 1f20d9bae629a8eb4944deb45f06feae 24308 debug optional libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.ddeb cee774e00611d8057e996a8249637d6a 6076 libs optional libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.deb 84b9acce644a94f07ce310c253683e61 11730 libs optional tiff_4.1.0+git191117-2ubuntu0.20.04.3_ppc64el.buildinfo Original-Maintainer: Laszlo Boszormenyi (GCS)