There are basically two categories of CVEs for libtiff. If you want to see a list of recent issues, you can quite simply go look at the changelog for the most recent release: http://www.remotesensing.org/libtiff/v4.0.6.html .
There have been security issues every few weeks now. For instance, CVE-2015-8665, CVE-2015-8784 and a few issues pending CVEs, about which a maintainer (Bob Friesenhahn) is saying the following: > To my knowledge, none of the issues recently posted on this list have > been addressed yet in libtiff. > > It is always our priority to fix issues occuring in libtiff itself > before addressing issues in the libtiff utilities. Some of the > libtiff maintainers care about only a few of the utilities. We are > all volunteers and available time is limited. > > It is my intention to spend time addressing the libtiff utility issues > (some of which might be due to issues in core libtiff) once I have > addressed the remaining CVEs in GraphicsMagick. Issues appearing to > be due to problems in libtiff itself will get attention first. So, yeah, many issues and updates are a bit laggy. -- Adrien Nader ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z _______________________________________________ enlightenment-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/enlightenment-devel
