-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 26 Jan 2018 20:53:45 +0000 Source: tiff Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc Architecture: mips Version: 4.0.3-12.3+deb8u5 Distribution: jessie-security Urgency: high Maintainer: mips Build Daemon (mips-aql-06) Changed-By: Moritz Muehlenhoff Description: libtiff-doc - TIFF manipulation and conversion documentation libtiff-opengl - TIFF manipulation and conversion tools libtiff-tools - TIFF manipulation and conversion tools libtiff5 - Tag Image File Format (TIFF) library libtiff5-dev - Tag Image File Format library (TIFF), development files libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface Closes: 866109 868513 872607 873879 873880 885985 Changes: tiff (4.0.3-12.3+deb8u5) jessie-security; urgency=high . [ Laszlo Boszormenyi (GCS) ] * Fix CVE-2017-11335: heap based buffer write overflow in tiff2pdf (closes: #868513). * Fix CVE-2017-12944: OOM prevention in TIFFReadDirEntryArray() (closes: #872607). * Fix CVE-2017-13726: reachable assertion abort in TIFFWriteDirectorySec() (closes: #873880). * Fix CVE-2017-13727: reachable assertion abort in TIFFWriteDirectoryTagSubifd() (closes: #873879). * Fix CVE-2017-18013: NULL pointer dereference in TIFFPrintDirectory() (closes: #885985). * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf() function (closes: #866109). . [ Moritz Muehlenhoff ] * CVE-2016-10371 Checksums-Sha1: 4ff8f9e0013b749fd268305a81ff2cb8d5701359 205038 libtiff5_4.0.3-12.3+deb8u5_mips.deb 817ab0dd245e3553d9d72fa28a94c20811a627c0 81290 libtiffxx5_4.0.3-12.3+deb8u5_mips.deb ed8e68951778723814ef7f3ae62a05abb8732c4c 343680 libtiff5-dev_4.0.3-12.3+deb8u5_mips.deb 718fe937a903b3935d6ace43a8b9a91e41a0211e 265078 libtiff-tools_4.0.3-12.3+deb8u5_mips.deb 60ff47330ef6b756639c2ece178567118c0852ac 85816 libtiff-opengl_4.0.3-12.3+deb8u5_mips.deb Checksums-Sha256: 783db3062f06ba5be414acff6843c7a65154c7e9a9836fb29bb4341233506a42 205038 libtiff5_4.0.3-12.3+deb8u5_mips.deb c048914c32344952aeda73d67fe46faa7d266c0a99b32cea0e68ff57906f2990 81290 libtiffxx5_4.0.3-12.3+deb8u5_mips.deb 49b83a05391fc003ba44213f287934e337e438ac6bf1fd9cea3c7363c4caadc2 343680 libtiff5-dev_4.0.3-12.3+deb8u5_mips.deb 891af8f12a6cbc24144e8d1f9035e4fa88fae065aee1175126ec5df66fd2ac08 265078 libtiff-tools_4.0.3-12.3+deb8u5_mips.deb 7d6bdb2bc4578c728c6b36bde655182301aa2140ccabe63ff13f2f7f91d91261 85816 libtiff-opengl_4.0.3-12.3+deb8u5_mips.deb Files: 03f75f36158565e6461d5abfbaa07302 205038 libs optional libtiff5_4.0.3-12.3+deb8u5_mips.deb 7c1ff25e4ee57cdf7faf0af606e523c9 81290 libs optional libtiffxx5_4.0.3-12.3+deb8u5_mips.deb b726baf656d24719640fa260d4c5abd8 343680 libdevel optional libtiff5-dev_4.0.3-12.3+deb8u5_mips.deb 05b5d6b353fe919cfee00a30305081c5 265078 graphics optional libtiff-tools_4.0.3-12.3+deb8u5_mips.deb adcd45fd5c7c16177f3d7b8904f2bf4b 85816 graphics optional libtiff-opengl_4.0.3-12.3+deb8u5_mips.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEPzeKAxMhkiZM8MPdXXKSgWLWBaUFAlprvtcACgkQXXKSgWLW BaVD7A/+NAA15M0YAlT4+R+0zthC16xgjZ2SXk77ePJY9/Du7LQZVYMDcGuF7A4k qC2NHJF6UIlu1sYta12L1Exc7qDHb/+idwiFK8j6qZFPKBGNvaaoug9SE+QJoIxA yYVxtBpC0APK9g5SbOAaZsJZfaKSCWfjERJEZuXWfFJoRi5RCCi/7kHXXN9mLYu/ EQ5Xr4iSPwhHsQ/CBaVU/f0ovwvl0vkpx4jLQ9XGIwtCYRL6P/I0A5Q7oFiZqVuc 7xIhYa0SAWCemO4Enzy9f/WZ+b8guEZs6NecuBy1CiW5VbhJhYbpFZII/txjYoOc yLYjNkFr6eN80TFfmcDfn41hXs3D4Tx1AXt2CEVh0gWj/HSoTtwvbtdTvJTq2vvF mbr9335XNbJz/xckj9d4LZtmn8hXtXsjN7fOh3u5nrVGh8em3SQUqGsmElr+t7KU qEWfqt3NQJ/wkNvX35X6YP3ldJN+jPsWZI7oOnbDTlqjJxez7/huAOS6hbCvqwHx ojYpv01wCA5EwYQE0+0tuztIxB52OX004W4/ZdzZnUpzNIxD9GxV6UVYGkWPcGVZ nUmnjvetDTIsptnxPa/MDfwBZ9NGNkajfGjg6+fvASfTqJoa+MMMDmUTXct8Bywx FPns1zrYNU+t/ycTnjBFWaLu7qsSpqChPCEx+kgTKmPNA85DouI= =+loJ -----END PGP SIGNATURE-----