Publishing details

• Removed from disk on 2019-01-23.
• Removal requested on 2019-01-23.
• Superseded on 2019-01-22 by tiff - 4.0.6-1ubuntu0.5
• Published on 2018-03-26
• Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Ubuntu Archive Robot

Changelog

tiff (4.0.6-1ubuntu0.4) xenial-security; urgency=medium

  * SECURITY UPDATE: buffer overflow in gif2tiff
    - debian/patches/CVE-2016-3186.patch: check return code in
      tools/gif2tiff.c.
    - CVE-2016-3186
  * SECURITY UPDATE: buffer overflow in gif2tiff
    - debian/patches/CVE-2016-5102.patch: make warning fatal in
      tools/gif2tiff.c.
    - CVE-2016-5102
  * SECURITY UPDATE: multiple overflows
    - debian/patches/CVE-2016-5318.patch: ignore certain fields in
      libtiff/tif_dir.h, libtiff/tif_dirinfo.c, libtiff/tif_dirread.c.
    - CVE-2016-5318
    - CVE-2017-9147
  * SECURITY UPDATE: bmp2tiff issues
    - debian/patches/CVE-2017-5563_9117.patch: add check to
      tools/bmp2tiff.c.
    - CVE-2017-5563
    - CVE-2017-9117
  * SECURITY UPDATE: heap-based buffer overflow in t2p_write_pdf
    - debian/patches/CVE-2017-9935-1.patch: fix transfer function handling
      in libtiff/tif_dir.c, tools/tiff2pdf.c.
    - debian/patches/CVE-2017-9935-2.patch: fix incorrect type for transfer
      table in tools/tiff2pdf.c.
    - CVE-2017-9935
  * SECURITY UPDATE: DoS in TIFFOpen
    - debian/patches/CVE-2017-11613-1.patch: avoid memory exhaustion in
      libtiff/tif_dirread.c.
    - debian/patches/CVE-2017-11613-2.patch: rework fix in
      libtiff/tif_dirread.c.
    - CVE-2017-11613
  * SECURITY UPDATE: TIFFSetupStrips heap overflow in pal2rgb
    - debian/patches/CVE-2017-17095.patch: add workaround to
      tools/pal2rgb.c.
    - CVE-2017-17095

 -- Marc Deslauriers <email address hidden>  Thu, 22 Mar 2018 10:16:37 -0400

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el
• s390x

Package files

• libtiff-doc_4.0.6-1ubuntu0.4_all.deb (299.5 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_amd64.ddeb (11.6 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb (12.2 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_armhf.ddeb (12.1 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_i386.ddeb (11.2 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_powerpc.ddeb (12.0 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_ppc64el.ddeb (12.4 KiB)
• libtiff-opengl-dbgsym_4.0.6-1ubuntu0.4_s390x.ddeb (11.0 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_amd64.deb (10.2 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_arm64.deb (9.8 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_armhf.deb (9.8 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_i386.deb (10.5 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_powerpc.deb (10.3 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_ppc64el.deb (10.6 KiB)
• libtiff-opengl_4.0.6-1ubuntu0.4_s390x.deb (10.2 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_amd64.ddeb (282.6 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb (285.1 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_armhf.ddeb (279.3 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_i386.ddeb (257.2 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_powerpc.ddeb (271.5 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_ppc64el.ddeb (343.4 KiB)
• libtiff-tools-dbgsym_4.0.6-1ubuntu0.4_s390x.ddeb (261.8 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_amd64.deb (216.1 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_arm64.deb (194.7 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_armhf.deb (205.2 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_i386.deb (223.3 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_powerpc.deb (205.4 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_ppc64el.deb (233.3 KiB)
• libtiff-tools_4.0.6-1ubuntu0.4_s390x.deb (209.9 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_amd64.ddeb (256.3 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb (256.9 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_armhf.ddeb (244.4 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_i386.ddeb (230.8 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_powerpc.ddeb (245.1 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_ppc64el.ddeb (287.4 KiB)
• libtiff5-dbgsym_4.0.6-1ubuntu0.4_s390x.ddeb (246.6 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_amd64.deb (262.0 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_arm64.deb (241.6 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_armhf.deb (246.2 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_i386.deb (278.9 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_powerpc.deb (243.8 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_ppc64el.deb (282.3 KiB)
• libtiff5-dev_4.0.6-1ubuntu0.4_s390x.deb (258.5 KiB)
• libtiff5_4.0.6-1ubuntu0.4_amd64.deb (144.6 KiB)
• libtiff5_4.0.6-1ubuntu0.4_arm64.deb (123.3 KiB)
• libtiff5_4.0.6-1ubuntu0.4_armhf.deb (128.8 KiB)
• libtiff5_4.0.6-1ubuntu0.4_i386.deb (155.2 KiB)
• libtiff5_4.0.6-1ubuntu0.4_powerpc.deb (131.7 KiB)
• libtiff5_4.0.6-1ubuntu0.4_ppc64el.deb (151.5 KiB)
• libtiff5_4.0.6-1ubuntu0.4_s390x.deb (140.4 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_amd64.ddeb (14.6 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_arm64.ddeb (14.8 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_armhf.ddeb (15.0 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_i386.ddeb (14.0 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_powerpc.ddeb (14.6 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_ppc64el.ddeb (14.9 KiB)
• libtiffxx5-dbgsym_4.0.6-1ubuntu0.4_s390x.ddeb (14.2 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_amd64.deb (5.5 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_arm64.deb (5.6 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_armhf.deb (5.6 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_i386.deb (6.1 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_powerpc.deb (6.1 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_ppc64el.deb (5.9 KiB)
• libtiffxx5_4.0.6-1ubuntu0.4_s390x.deb (5.6 KiB)
• tiff_4.0.6-1ubuntu0.4.debian.tar.xz (52.8 KiB)
• tiff_4.0.6-1ubuntu0.4.dsc (2.3 KiB)
• tiff_4.0.6.orig.tar.gz (2.1 MiB)