Format: 1.8 Date: Tue, 01 Nov 2022 20:55:02 +0530 Source: tiff Binary: libtiff-dev libtiff-opengl libtiff-tools libtiff5 libtiff5-dev libtiffxx5 Architecture: i386 Version: 4.1.0+git191117-2ubuntu0.20.04.6 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Nishit Majithia Description: libtiff-dev - Tag Image File Format library (TIFF), development files libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files (transiti libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Changes: tiff (4.1.0+git191117-2ubuntu0.20.04.6) focal-security; urgency=medium . * SECURITY UPDATE: out-of-bound read/write in tiffcrop - debian/patches/CVE-2022-2867_2868_2869.patch: Fix heap-buffer-overflow by correcting uint32_t underflow - CVE-2022-2867 - CVE-2022-2868 - CVE-2022-2869 * SECURITY UPDATE: heap-based buffer overflow - debian/patches/CVE-2022-3570_3598.patch: increases buffer sizes for subroutines in tools/tiffcrop.c. - CVE-2022-3570 - CVE-2022-3598 * SECURITY UPDATE: out-of-bound write in tiffcrop - debian/patches/CVE-2022-3599.patch: Revised handling of TIFFTAG_INKNAMES and related TIFFTAG_NUMBEROFINKS value - CVE-2022-3599 * SECURITY UPDATE: stack overflow in _TIFFVGetField - debian/patches/CVE-2022-34526.patch: Add _TIFFCheckFieldIsValidForCodec() return FALSE when passed a codec-specific tag and the codec is not configured - CVE-2022-34526 Checksums-Sha1: 67ae436146489ae0e0ad8d17749b6819a86f38ee 304952 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb a8db32059c8820a5d5e594ef36b859ba2be7e57a 14524 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb df8ba6bb4953a3dfbabd0056d24f8b4b84f8ed9c 11044 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 5d3999a16268ccfe830fbae670ea7b2f1f03153f 396284 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb f4c46ee7211ed624872caec23ae193a6e298fcfd 199468 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 4d767c998b4cc1a3de1d384bf61506b9b5049a14 451300 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 754f5b7c4bb920cbabd7078d5b7f011a03dbd2b8 2264 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb e0968f533d1eaef2f6f858398419841bb5d81c2c 175076 libtiff5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 52df3fec07ef31951580d258d625d22893b787e2 23356 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 06957dc354f4ce522daf120937fa08279f34b3c7 6556 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb e7e8b395cc0cf8e502246a089acb6a7b45664441 11679 tiff_4.1.0+git191117-2ubuntu0.20.04.6_i386.buildinfo Checksums-Sha256: 497aab1243adfebda2290b77f453305795bf951642303b2b05fab36c2a1453aa 304952 libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 4c1676dd3193a0a840e7d37ffaa2e48c5370984f989521bd030ff78a79b8b9fa 14524 libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 940f1c82dc1987bf8a25ed9855ccc7fd204f6bdbda11028c24569508d468f149 11044 libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 632aa80af0c8afbfa469f239b20cd65f2a30b7709bddb38941140262cc19586e 396284 libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 5997bc892e9761856726dd12eb42e0ba8c52b5179e81a085f670da40625b662e 199468 libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb a1f85b9d03a8b6cf4504d45a461fbd44bf95e197f568de709c5e2aa46ca2980b 451300 libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 57822e860b056b9b78de84bf0e9c4fda01b8490d47f67527c36a32a9c12603db 2264 libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb cbd35c4eea577b0b78ba86f2676c630bb39a10a423bf0d6ea3b80582a2fd88e6 175076 libtiff5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb a3d859ec66885ccfd89a5a2869d06fc6aadb8a7bb91807311591bae27de09226 23356 libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb d45572f19c987f0110c2c88b1cc2dbc94def965930089503738af2abaa40918f 6556 libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 6f80f1e5bf049c271122c07b4f950cc5bf00bcb1efcf6e55c5cdb7af764ad828 11679 tiff_4.1.0+git191117-2ubuntu0.20.04.6_i386.buildinfo Files: 36d524fc3f5cf264c4291e8aa8afc7ce 304952 libdevel optional libtiff-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb fd2f630c28bfdf058831fbacf61904b7 14524 debug optional libtiff-opengl-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 597495fb4e687c1d8c5ba3d2a831b3a1 11044 graphics optional libtiff-opengl_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 58aa178154f2c896c96bd84ba0d3c853 396284 debug optional libtiff-tools-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb 582d5403f2f17173298b6e7b1eb4f206 199468 graphics optional libtiff-tools_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 641d92cbb500d3bc7ed33b937af698ca 451300 debug optional libtiff5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb e0eb146b558a32b9c5cf0ad34191df70 2264 oldlibs optional libtiff5-dev_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb d7e77b178a220db6971b4d06e75aa574 175076 libs optional libtiff5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb d93fed4f1e08724e6a1f5185e810cd27 23356 debug optional libtiffxx5-dbgsym_4.1.0+git191117-2ubuntu0.20.04.6_i386.ddeb a70fc8d90de7c98e5c563dd1dff4f6bd 6556 libs optional libtiffxx5_4.1.0+git191117-2ubuntu0.20.04.6_i386.deb 017aa49b599b486cb30aafcb0c57e2df 11679 libs optional tiff_4.1.0+git191117-2ubuntu0.20.04.6_i386.buildinfo Original-Maintainer: Laszlo Boszormenyi (GCS)