Change logs for tiff source package in Saucy
-
tiff (4.0.2-4ubuntu3.1) saucy-security; urgency=medium * SECURITY UPDATE: denial of service via buffer overflow in gif2tiff - debian/patches/CVE-2013-4231.patch: validate datasize in tools/gif2tiff.c. - CVE-2013-4231 * SECURITY UPDATE: denial of service via use-after-free in tiff2pdf - debian/patches/CVE-2013-4232.patch: properly exit on error in tools/tiff2pdf.c. - CVE-2013-4232 * SECURITY UPDATE: denial of service and possible code execution in gif2tiff tool - debian/patches/CVE-2013-4243.patch: check width and height in tools/gif2tiff.c. - CVE-2013-4243 * SECURITY UPDATE: denial of service and possible code execution in gif2tiff tool LZW decompressor - debian/patches/CVE-2013-4244.patch: validate code size in tools/gif2tiff.c. - CVE-2013-4244 -- Marc Deslauriers <email address hidden> Mon, 05 May 2014 15:30:09 -0400 -
tiff (4.0.2-4ubuntu3) saucy; urgency=low * SECURITY UPDATE: denial of service and possible code execution via heap overflow in tp_process_jpeg_strip(). - debian/patches/CVE-2013-1960.patch: improve tp_process_jpeg_strip() logic in tools/tiff2pdf.c. - CVE-2013-1960 * SECURITY UPDATE: denial of service via stack overflow with malformed image-length and resolution. - debian/patches/CVE-2013-1961.patch: replace use of sprintf() with snprintf() in contrib/dbs/xtiff/xtiff.c, libtiff/tif_codec.c, libtiff/tif_dirinfo.c, tools/rgb2ycbcr.c, tools/tiff2bw.c, tools/tiff2pdf.c, tools/tiff2ps.c, tools/tiffcrop.c, tools/tiffdither.c. - CVE-2013-1961 -- Marc Deslauriers <email address hidden> Mon, 13 May 2013 10:34:05 -0400 -
tiff (4.0.2-4ubuntu2) raring; urgency=low * SECURITY UPDATE: denial of service and possible code execution via crafted PPM image - debian/patches/CVE-2012-4564.patch: check scanline_size in tools/ppm2tiff.c. - CVE-2012-4564 -- Marc Deslauriers <email address hidden> Thu, 15 Nov 2012 08:56:17 -0500
