-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 26 Jan 2018 20:53:45 +0000
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: armhf
Version: 4.0.3-12.3+deb8u5
Distribution: jessie-security
Urgency: high
Maintainer: armhf Build Daemon (henze) <buildd_armhf-henze@buildd.debian.org>
Changed-By: Moritz Muehlenhoff <jmm@debian.org>
Description:
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Closes: 866109 868513 872607 873879 873880 885985
Changes:
 tiff (4.0.3-12.3+deb8u5) jessie-security; urgency=high
 .
   [ Laszlo Boszormenyi (GCS) ]
   * Fix CVE-2017-11335: heap based buffer write overflow in tiff2pdf
     (closes: #868513).
   * Fix CVE-2017-12944: OOM prevention in TIFFReadDirEntryArray()
     (closes: #872607).
   * Fix CVE-2017-13726: reachable assertion abort in TIFFWriteDirectorySec()
     (closes: #873880).
   * Fix CVE-2017-13727: reachable assertion abort in
     TIFFWriteDirectoryTagSubifd() (closes: #873879).
   * Fix CVE-2017-18013: NULL pointer dereference in TIFFPrintDirectory()
     (closes: #885985).
   * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf()
     function (closes: #866109).
 .
   [ Moritz Muehlenhoff ]
   * CVE-2016-10371
Checksums-Sha1:
 39d0f9229723e2a95b784ff38500d5aa75d73677 206060 libtiff5_4.0.3-12.3+deb8u5_armhf.deb
 c971a934c1fde63967dfc2f43088c75e44b8bcc6 80828 libtiffxx5_4.0.3-12.3+deb8u5_armhf.deb
 5520f53a4afd8638ebab403df9769e09278d6f5d 329050 libtiff5-dev_4.0.3-12.3+deb8u5_armhf.deb
 8aeda0c37959a6eea18d94d389e0a5aea9d89afa 263568 libtiff-tools_4.0.3-12.3+deb8u5_armhf.deb
 1db41acaaee05a2034d07ce0ee6de5c8174232cb 85208 libtiff-opengl_4.0.3-12.3+deb8u5_armhf.deb
Checksums-Sha256:
 043f58d70bfc348208a6bcc2b6970cc299f2ce48e9b1d3f47f3a80261e953f21 206060 libtiff5_4.0.3-12.3+deb8u5_armhf.deb
 9f3a1dba482574fdc4e09e5a10f12804095cc1055936d1e6f872750db72bfaa9 80828 libtiffxx5_4.0.3-12.3+deb8u5_armhf.deb
 ad667367d88041f0a38b3ae135bdb154a12c0e5d660b5ac5811d666ee1baf944 329050 libtiff5-dev_4.0.3-12.3+deb8u5_armhf.deb
 2cd460009b6ce4ea9c87071dca7043723dd314f6da4981c03ba5907b4356f11a 263568 libtiff-tools_4.0.3-12.3+deb8u5_armhf.deb
 1f543da9bc6c99d881b97e73dd5b0b0ec7fd3d758606cc091339a879f44ca8e1 85208 libtiff-opengl_4.0.3-12.3+deb8u5_armhf.deb
Files:
 0c76afa5b2149182cc54ad3a2976dc16 206060 libs optional libtiff5_4.0.3-12.3+deb8u5_armhf.deb
 ecbcc54385ddef56ab8cb82948e50c30 80828 libs optional libtiffxx5_4.0.3-12.3+deb8u5_armhf.deb
 24344c4ff31a2eed0a0df66b4f4249f6 329050 libdevel optional libtiff5-dev_4.0.3-12.3+deb8u5_armhf.deb
 077d6e294480648d2d717c1a1414d3ab 263568 graphics optional libtiff-tools_4.0.3-12.3+deb8u5_armhf.deb
 5983eca303bbfa396031ea4f4bf28f92 85208 graphics optional libtiff-opengl_4.0.3-12.3+deb8u5_armhf.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEV/cHFWB5nZR3+CaJunHHiPkQx30FAlprwJsACgkQunHHiPkQ
x33/ww/8DOlaPFURw4RFXesIfO5OwBCDz1wzsyurBVUs0ECpCx186WVG1SeoiWNk
qy1Tur/2sZjPVXrkCBXAtBL///VRNtJhqTACBbyT3nITk+fZAsJxfe3BuHMo5XzO
fhiuZE2ceCj/y5a9FKP+IdxOtRas3Rfiqykxi8KVWU5SkwC3fIR061THF+JBrT8p
YIvNa6fB4DVs5A1SH062PWlLpwxszA26xooL5S+fWuIqkqH9CGEmBW1GdkLin40V
tBRku8730/FrXjqE1h6HHWcn8zJvhg12y3u4PxiB6LBhME4nizg6pB5LBceLRP/B
/fl+8zu2JXaW9U+JIdydCwK223azR4NBXiAm5gCz3idSlnhEyAKB90Ofqs0quaxC
DEpzrV9y/hzP4pi58xZZQF1fx+wyEvGcPe+JAXtpaNkakzIsIciOzi+KDvCLw8ST
vsMIg91UJyW8Z1z+CJzwu8L9Dh8mdmqpQMg3R5oZj9HAUppb8esdeqGiIqrz8lV0
YsSC3Qczw+gQ4vZLXMZaMhZqDHSBg1UCceUxEeWlKOmiv1Io5L8y54pxST4wIbLD
ZoUwOzEpLKZwraPGTusYSIMfQ5LTc+x6pLPVu78+ekZSDbsYdsR9o/bbofSikhg0
LFUJLnnxnevv/5zd0M3fuU/TiTl/WPPA4DlqkwO28FgKeJJvMec=
=ROgC
-----END PGP SIGNATURE-----