-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 26 Jan 2018 20:53:45 +0000 Source: tiff Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc Architecture: arm64 Version: 4.0.3-12.3+deb8u5 Distribution: jessie-security Urgency: high Maintainer: arm Build Daemon (arm-conova-02) Changed-By: Moritz Muehlenhoff Description: libtiff-doc - TIFF manipulation and conversion documentation libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Closes: 866109 868513 872607 873879 873880 885985 Changes: tiff (4.0.3-12.3+deb8u5) jessie-security; urgency=high . [ Laszlo Boszormenyi (GCS) ] * Fix CVE-2017-11335: heap based buffer write overflow in tiff2pdf (closes: #868513). * Fix CVE-2017-12944: OOM prevention in TIFFReadDirEntryArray() (closes: #872607). * Fix CVE-2017-13726: reachable assertion abort in TIFFWriteDirectorySec() (closes: #873880). * Fix CVE-2017-13727: reachable assertion abort in TIFFWriteDirectoryTagSubifd() (closes: #873879). * Fix CVE-2017-18013: NULL pointer dereference in TIFFPrintDirectory() (closes: #885985). * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf() function (closes: #866109). . [ Moritz Muehlenhoff ] * CVE-2016-10371 Checksums-Sha1: bb32d951c8633b72352be0e06f2685d626759bee 198720 libtiff5_4.0.3-12.3+deb8u5_arm64.deb 4080d5db52b20e9baba65ba0752767e97ea1b6c6 80920 libtiffxx5_4.0.3-12.3+deb8u5_arm64.deb 1ef9885c9a615af05c2db852473afaa71c726025 323406 libtiff5-dev_4.0.3-12.3+deb8u5_arm64.deb d4158b1058dd5106eb0a59f4ed81f31e0b9be871 253582 libtiff-tools_4.0.3-12.3+deb8u5_arm64.deb 9adb1b567b1a41bdca9ebfbb5d2c1f42b01cd087 85190 libtiff-opengl_4.0.3-12.3+deb8u5_arm64.deb Checksums-Sha256: 42b197f8e2761487318eae6879d1368e41a88a6dba48a867439dbf438a70fdbe 198720 libtiff5_4.0.3-12.3+deb8u5_arm64.deb 8d768924a91efaf60f196d2f56ff424d01ea1f7a4681532d87de2df2c7f912bd 80920 libtiffxx5_4.0.3-12.3+deb8u5_arm64.deb ac6e078e13f53704e061bdf9fb69db91e3bfe78f20b63b1cac90eceb67f5112e 323406 libtiff5-dev_4.0.3-12.3+deb8u5_arm64.deb 46eead51ffe314b8affb56afbed8f6ecda0bd072fef81936b29d5b26c832b914 253582 libtiff-tools_4.0.3-12.3+deb8u5_arm64.deb 985f94886d618cef4cf3d5364c44651e39252928f91a9506c73b291ebccda3a5 85190 libtiff-opengl_4.0.3-12.3+deb8u5_arm64.deb Files: b210010453e17759ebac9093e068edda 198720 libs optional libtiff5_4.0.3-12.3+deb8u5_arm64.deb 8aff751169ff846be12f8294f111b731 80920 libs optional libtiffxx5_4.0.3-12.3+deb8u5_arm64.deb e2c5143dfa1485379686362e66411564 323406 libdevel optional libtiff5-dev_4.0.3-12.3+deb8u5_arm64.deb 0225799d9105a944c79698ee92cc4b1a 253582 graphics optional libtiff-tools_4.0.3-12.3+deb8u5_arm64.deb 6ef1fa423f66cf7b5bf2a4e5751f5a03 85190 graphics optional libtiff-opengl_4.0.3-12.3+deb8u5_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0EK24mOlI1VWTSZd51VostzQ948FAlprvQAACgkQ51VostzQ 949HhhAAxC/NYgCvWrPVb2T1lpvsQZ7t/F4xUnLPArT11BxIulF/0QFdnNsS/LKK 6b154+/4L9B3ItQKOgdli5Xdt6NnXcqueBA082XhEAiJB7/ummN79bKbpPrFtZG6 78EtNFnVb653tEj6XbNB7079veyOwnOnMDNAok/bTwFb5XA0wxBuTB38Py3PS+pD agb8aDW2pzI3v+AcPEigl5EDHarkCpK+anQOxB9EdytPfYpy7wJSTsnIIcj6jb6U dU7iwAo39vjQ2a3z85iut03Ir16n/Pe31o8v+easC4FC2zynWjCXxOqO2cfPlJZR MfEloPIxHUtjddrhCx7QzpoPZIHTZawhtWqDwDvWm+cdriAmnNjpR9bcEguwNGeU KG5vbZmfyd7fkhEoLpNBrz8hN2Lhvd7P2/Q2dXiEhs2YykriI2FgIN5jBEmULS6H ZBTh864fgrBkeIMSwc1qz/ahba1ZPFJ9SVq2/JwUzn/Ejf29BINLEzLjwHKdcWkt y9lPJ7hqhNUgcJkYf5cUkxUqHKDdMC7knZvgtumxcV7abknQIO263esb3xcyai4W amcvK42kJTcgwmhc2Bkyv9aKi2kH/Dm3Rrh00K80o0wxUYhWMnM46kT4RtCwPEsj 5BJnL0qkSae94l0W1QHbwUSgxiJxHdpnSGbkBSGQtyGVFhwoE1k= =TzkW -----END PGP SIGNATURE-----