This bug was fixed in the package tiff - 3.9.4-5ubuntu2
---------------
tiff (3.9.4-5ubuntu2) natty; urgency=low
* SECURITY UPDATE: denial of service via invalid td_stripbytecount field
(LP: #597246)
- debian/patches/CVE-2010-2482.patch: look for missing strip byte
counts in libtiff/tif_ojpeg.c, tools/tiffsplit.c.
- CVE-2010-2482
* SECURITY UPDATE: denial of service via invalid ReferenceBlackWhite
values
- debian/patches/CVE-2010-2595.patch: validate values in
libtiff/tif_color.c.
- CVE-2010-2595
* SECURITY UPDATE: denial of service via devide-by-zero (LP: #593067)
- debian/patches/CVE-2010-2597.patch: properly initialize fields in
libtiff/tif_strip.c.
- CVE-2010-2597
- CVE-2010-2598
* SECURITY UPDATE: denial of service via out-of-order tags
- debian/patches/CVE-2010-2630.patch: correctly handle order in
libtiff/tif_dirread.c.
- CVE-2010-2630
* SECURITY UPDATE: denial of service and possible code execution via
buffer overflow in Fax4Decode
- debian/patches/CVE-2011-0192.patch: check length in
libtiff/tif_fax3.h.
- CVE-2011-0192
-- Marc Deslauriers <[email protected]> Thu, 03 Mar 2011 10:52:21
-0500
** Changed in: tiff (Ubuntu)
Status: Confirmed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2595
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2597
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2598
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2630
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-0192
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/597246
Title:
eog crashed with SIGSEGV in TIFFVGetField()
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
