Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 9: Urgent Fix for LibTiff LZW Crash Issue 2009-7335 Released

fedora
Calendar Grey July 3, 2009
Dist Fedora Esm H88
A patch for Fedora 9's libjpeg resolves flaws in handling compressed images. This upgrade optimizes image processing safety with the implemented solution.
Fixes latest libtiff LZW decoding crash problem

Summary

The libtiff package contains a library of functions for manipulating

TIFF (Tagged Image File Format) image format files. TIFF is a widely

used file format for bitmapped images. TIFF files usually end in the

.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF

format image files.

Update Information:

Fixes latest libtiff LZW decoding crash problem

Topics%20covered

Topics Covered

security advisory software update Fedora crash fix image handling libtiff LZW decoding

Change Log

* Wed Jul 1 2009 Tom Lane 3.8.2-13 - Fix some more LZW decoding vulnerabilities (CVE-2009-2285) Related: #507465 - Update upstream URL * Tue Aug 26 2008 Tom Lane 3.8.2-11 - Fix LZW decoding vulnerabilities (CVE-2008-2327) Related: #458674 - Use -fno-strict-aliasing per rpmdiff recommendation

References


[ 1 ] Bug #507465 - CVE-2009-2285 libtiff: LZWDecodeCompat underflow https://bugzilla.redhat.com/show_bug.cgi?id=507465

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libtiff' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libtiff
Product: Fedora 9
Version: 3.8.2
Release: 13.fc9
URL: Summary : Library of functions for manipulating TIFF format image files

Topics%20covered

Topics Covered

security advisory software update Fedora crash fix image handling libtiff LZW decoding

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here