UbuntuUpdates.org

Package "tiff"

Name: tiff

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • TIFF manipulation and conversion tools
  • TIFF manipulation and conversion tools
Latest version: 4.5.1+git230720-4ubuntu2.2
Release: noble (24.04)
Level: security
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "tiff" in Noble

Repository Area Version
base universe 4.5.1+git230720-4ubuntu2
base main 4.5.1+git230720-4ubuntu2
security main 4.5.1+git230720-4ubuntu2.2
updates main 4.5.1+git230720-4ubuntu2.2
updates universe 4.5.1+git230720-4ubuntu2.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.5.1+git230720-4ubuntu2.2 2024-09-09 13:07:11 UTC

  tiff (4.5.1+git230720-4ubuntu2.2) noble-security; urgency=medium

  * SECURITY UPDATE: null pointer dereference
    - debian/patches/CVE-2024-7006.patch: adds check for the return value
      of _TIFFCreateAnonField() to handle potential NULL pointers in
      libtiff/tif_dirinfo.c and libtiff/tif_dirread.c.
    - CVE-2024-7006

 -- Ian Constantin <email address hidden> Thu, 05 Sep 2024 16:59:36 +0300
Source diff to previous version
CVE-2024-7006 A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures thro

Version: 4.5.1+git230720-4ubuntu2.1 2024-06-11 07:07:10 UTC

  tiff (4.5.1+git230720-4ubuntu2.1) noble-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow in tiffcrop.c
    - debian/patches/CVE-2023-3164.patch: heap buffer overflow in tiffcrop.c
    - CVE-2023-3164

 -- Bruce Cable <email address hidden> Wed, 29 May 2024 15:09:58 +1000
CVE-2023-3164 A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw all


About   -   Send Feedback to @ubuntu_updates