Format: 1.8
Date: Tue, 01 Nov 2022 20:45:49 +0530
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: i386
Version: 4.0.9-5ubuntu0.8
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-068.buildd>
Changed-By: Nishit Majithia <nishit.majithia@canonical.com>
Description:
 libtiff-dev - Tag Image File Format library (TIFF), development files, current
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Changes:
 tiff (4.0.9-5ubuntu0.8) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: out-of-bound read/write in tiffcrop
     - debian/patches/CVE-2022-2867_2868_2869.patch: Fix heap-buffer-overflow by
       correcting uint32_t underflow
     - CVE-2022-2867
     - CVE-2022-2868
     - CVE-2022-2869
   * SECURITY UPDATE: heap-based buffer overflow
     - debian/patches/CVE-2022-3570_3598.patch: increases buffer sizes for
       subroutines in tools/tiffcrop.c.
     - CVE-2022-3570
     - CVE-2022-3598
   * SECURITY UPDATE: out-of-bound write in tiffcrop
     - debian/patches/CVE-2022-3599.patch: Revised handling of TIFFTAG_INKNAMES
       and related TIFFTAG_NUMBEROFINKS value
     - CVE-2022-3599
   * SECURITY UPDATE: stack overflow in _TIFFVGetField
     - debian/patches/CVE-2022-34526.patch: Add _TIFFCheckFieldIsValidForCodec()
       return FALSE when passed a codec-specific tag and the codec is not
       configured
     - CVE-2022-34526
Checksums-Sha1:
 3693896cf35e114f29bbbb054b9eb1df86a9526a 2252 libtiff-dev_4.0.9-5ubuntu0.8_i386.deb
 a35c8abc130f6c38177a4a5fdbc3bcd330120576 13112 libtiff-opengl-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 cf09a63724ca5ec8b0404b6967f3146e02e754cf 10932 libtiff-opengl_4.0.9-5ubuntu0.8_i386.deb
 e0fbbb5742169e469535483ca614e21da9784027 318208 libtiff-tools-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 cb258c1f454bc93ad7d3d462b76228bffe9e1298 201220 libtiff-tools_4.0.9-5ubuntu0.8_i386.deb
 05b1ff7872da0ff0a4b3312eae34cf8f7d5c234b 337000 libtiff5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 d62a01661b19551b90475062615de0ad4132ca50 292816 libtiff5-dev_4.0.9-5ubuntu0.8_i386.deb
 b7efdebbea86bcd0aad65f3502a99d9391d4155a 165376 libtiff5_4.0.9-5ubuntu0.8_i386.deb
 6c598a9a57c2e8bab7517fbd629ac7f65e801297 20512 libtiffxx5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 9fb0068089f8ffa7529c3d0996fd52dd2c5b61e5 6360 libtiffxx5_4.0.9-5ubuntu0.8_i386.deb
 76ebe696583f4d5e58c3235588ef9852995f3747 11292 tiff_4.0.9-5ubuntu0.8_i386.buildinfo
Checksums-Sha256:
 af481b35e29acac1342354657a0d674ef138a177cae7da73f21c03f99a32d013 2252 libtiff-dev_4.0.9-5ubuntu0.8_i386.deb
 80ba6616acfdc28f64113074e0238bf9640a6ef1d9d990dcb51b2d7a394f1828 13112 libtiff-opengl-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 c75cd50fa73647fbb2a19612bd524b3d67a4f007267ace5622f29f7da7afb5bd 10932 libtiff-opengl_4.0.9-5ubuntu0.8_i386.deb
 4ba41992f729aa5c081071d3c22d5ea68c38c7da67fdc93d08e91e2fd4a6ef27 318208 libtiff-tools-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 2c3bb8ea21bab065a2456bcc60ba32d7053a7630b69eff465050523b77cff69f 201220 libtiff-tools_4.0.9-5ubuntu0.8_i386.deb
 62138685e62dd8a86df4ab0dc605a51779372f1ad56c13020019cd749e20cad5 337000 libtiff5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 3c266b50eefd2a208426035ac5e6e5338ab2e78a5485b4cca556291d50d2113f 292816 libtiff5-dev_4.0.9-5ubuntu0.8_i386.deb
 300711cc153076c8b20fd9963d85bc8caaa30ca738e75e6973747908e2c1c5b9 165376 libtiff5_4.0.9-5ubuntu0.8_i386.deb
 91e2aaf1344d6848ec35c60eaa7de5025998e58dd0361da169bc8f3869f9e421 20512 libtiffxx5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 f20668420670e7f7c470a0cdb67a60848dd48cce949fd96bbbca8f4af19d9c0d 6360 libtiffxx5_4.0.9-5ubuntu0.8_i386.deb
 85af96a4e1786660b8f94cb69eda5635aae1497c47723b0dbefdcff7c70982e0 11292 tiff_4.0.9-5ubuntu0.8_i386.buildinfo
Files:
 fd27e746107a8da5925e54d2ee1a145a 2252 oldlibs optional libtiff-dev_4.0.9-5ubuntu0.8_i386.deb
 2d50ccae72b6f7b69a537a1c2a4dfeab 13112 debug optional libtiff-opengl-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 39623189c76a3c642b5e1a0f7f344582 10932 graphics optional libtiff-opengl_4.0.9-5ubuntu0.8_i386.deb
 56ae0eb2658ad81ca4f7cd6d4bad2ac8 318208 debug optional libtiff-tools-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 4ebab41c5c0086adf0c19d746390a885 201220 graphics optional libtiff-tools_4.0.9-5ubuntu0.8_i386.deb
 19142cacce3e3a4c537d326d7e9762e9 337000 debug optional libtiff5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 d1f2803bbc2d558e1f5ca71f84a42bf9 292816 libdevel optional libtiff5-dev_4.0.9-5ubuntu0.8_i386.deb
 efb601c834252dea32312647d44100fa 165376 libs optional libtiff5_4.0.9-5ubuntu0.8_i386.deb
 783b08cd0efc95cb6950585ead62f063 20512 debug optional libtiffxx5-dbgsym_4.0.9-5ubuntu0.8_i386.ddeb
 a1da0636ea5b56a46fc5248eb6283880 6360 libs optional libtiffxx5_4.0.9-5ubuntu0.8_i386.deb
 954ffe94c71f1633e0af5558cf9715cc 11292 libs optional tiff_4.0.9-5ubuntu0.8_i386.buildinfo
Original-Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>