Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Red Hat 2.1: RHSA-2005:019-01 Critical: libtiff Integer Overflow

red hat
Calendar Grey January 13, 2005
Dist Redhat Esm H88
Recent libtiff updates tackle integer overflow issues, bolstering security measures for Fedora users under advisory FEDORA-2023:003-02.
Updated libtiff packages that fix various integer overflows are now available.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

143505 - CAN-2004-1308 LibTIFF Directory Entry Count Integer Overflow Vulnerability 143577 - libtiff integer overflow.

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS: 9faf1a81c8cb9f7f6e6b712840b10951 libtiff-3.5.5-19.src.rpm

i386: ebdab894fe8b36793f3d277ecac3e870 libtiff-3.5.5-19.i386.rpm 74c12e5af9b426a1c50bb906a50db452 libtiff-devel-3.5.5-19.i386.rpm

ia64: c6c4648dfb26f03792898db6e75025e2 libtiff-3.5.5-19.ia64.rpm 0e2f3a5d95535589bdc71c96f6740b40 libtiff-devel-3.5.5-19.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS: 9faf1a81c8cb9f7f6e6b712840b10951 libtiff-3.5.5-19.src.rpm

ia64: c6c4648dfb26f03792898db6e75025e2 libtiff-3.5.5-19.ia64.rpm 0e2f3a5d95535589bdc71c96f6740b40 libtiff-devel-3.5.5-19.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS: 9faf1a81c8cb9f7f6e6b712840b10951 libtiff-3.5.5-19.src.rpm

i386: ebdab894fe8b36793f3d277ecac3e870 libtiff-3.5.5-19.i386.rpm 74c12e5af9b426a1c50bb906a50db452 libtiff-devel-3.5.5-19.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS: 9faf1a81c8cb9f7f6e6b712840b10951 libtiff-3.5.5-19.src.rpm

i386: ebdab894fe8b36793f3d277ecac3e870 libtiff-3.5.5-19.i386.rpm 74c12e5af9b426a1c50bb906a50db452 libtiff-devel-3.5.5-19.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS: 230133fd30cfec91969c831561481cf9 libtiff-3.5.7-22.el3.src.rpm

i386: 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 85e8a16f6b0a069ee6136eb05fd08271 libtiff-devel-3.5.7-22.el3.i386.rpm

ia64: 19f8fab02cba5e20525f98eedf00b81d libtiff-3.5.7-22.el3.ia64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm a8fe08e3128aeb918b9fd60f1750616a libtiff-devel-3.5.7-22.el3.ia64.rpm

ppc: b8d6bab0db333287b4737527f5f276b5 libtiff-3.5.7-22.el3.ppc.rpm e9fd3b43c0b3d2adc9da465c09260e07 libtiff-devel-3.5.7-22.el3.ppc.rpm

ppc64: feee358ad4505b384359daefe9b14a5d libtiff-3.5.7-22.el3.ppc64.rpm

s390: c532e0a2c9dbcd499499431aeccef2f5 libtiff-3.5.7-22.el3.s390.rpm 87fc4f5c36a512ee3015e27159c0ca21 libtiff-devel-3.5.7-22.el3.s390.rpm

s390x: 092ccc24332cc5664aee3425879c51e1 libtiff-3.5.7-22.el3.s390x.rpm c532e0a2c9dbcd499499431aeccef2f5 libtiff-3.5.7-22.el3.s390.rpm b5a4e320b091a5a2ccff69d50c8a57e3 libtiff-devel-3.5.7-22.el3.s390x.rpm

x86_64: a475413f7d6f4dee48624fbf0ab6cb53 libtiff-3.5.7-22.el3.x86_64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 343b7da68281c2ec25351005bd1ab081 libtiff-devel-3.5.7-22.el3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS: 230133fd30cfec91969c831561481cf9 libtiff-3.5.7-22.el3.src.rpm

i386: 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 85e8a16f6b0a069ee6136eb05fd08271 libtiff-devel-3.5.7-22.el3.i386.rpm

x86_64: a475413f7d6f4dee48624fbf0ab6cb53 libtiff-3.5.7-22.el3.x86_64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 343b7da68281c2ec25351005bd1ab081 libtiff-devel-3.5.7-22.el3.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: 230133fd30cfec91969c831561481cf9 libtiff-3.5.7-22.el3.src.rpm

i386: 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 85e8a16f6b0a069ee6136eb05fd08271 libtiff-devel-3.5.7-22.el3.i386.rpm

ia64: 19f8fab02cba5e20525f98eedf00b81d libtiff-3.5.7-22.el3.ia64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm a8fe08e3128aeb918b9fd60f1750616a libtiff-devel-3.5.7-22.el3.ia64.rpm

x86_64: a475413f7d6f4dee48624fbf0ab6cb53 libtiff-3.5.7-22.el3.x86_64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 343b7da68281c2ec25351005bd1ab081 libtiff-devel-3.5.7-22.el3.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: 230133fd30cfec91969c831561481cf9 libtiff-3.5.7-22.el3.src.rpm

i386: 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 85e8a16f6b0a069ee6136eb05fd08271 libtiff-devel-3.5.7-22.el3.i386.rpm

ia64: 19f8fab02cba5e20525f98eedf00b81d libtiff-3.5.7-22.el3.ia64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm a8fe08e3128aeb918b9fd60f1750616a libtiff-devel-3.5.7-22.el3.ia64.rpm

x86_64: a475413f7d6f4dee48624fbf0ab6cb53 libtiff-3.5.7-22.el3.x86_64.rpm 92b6f791091a438b1b798907dcdac625 libtiff-3.5.7-22.el3.i386.rpm 343b7da68281c2ec25351005bd1ab081 libtiff-devel-3.5.7-22.el3.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CAN-2004-1308 https://www.cve.org/CVERecord?id=CAN-2004-1183

Package List


Severity
critical
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2005:019-01
Issue date: 2005-01-13
Updated on: 2005-01-13
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, ppc64, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here