Debian: DSA-4608-1: tiff security update

Date21 Jan 2020

CategoryDebian Linux Distribution - Security Advisories

205

Posted ByLinuxSecurity Advisories

Multiple integer overflows have been discovered in the libtiff library and the included tools. For the stable distribution (buster), these problems have been fixed in

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4608-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.%MINIFYHTMLcb7941c74229abc240efbeb2526677f213%https://www.debian.org/security/                       Moritz Muehlenhoff
January 21, 2020                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : tiff
CVE ID         : CVE-2019-14973 CVE-2019-17546

Multiple integer overflows have been discovered in the libtiff library
and the included tools.

For the stable distribution (buster), these problems have been fixed in
version 4.1.0+git191117-2~deb10u1.

We recommend that you upgrade your tiff packages.

For the detailed security status of tiff please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/tiff

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.%MINIFYHTMLcb7941c74229abc240efbeb2526677f214%