| ||||||||||||||||||||||
Ubuntu alert USN-797-1 (tiff)
=========================================================== Ubuntu Security Notice USN-797-1 July 06, 2009 tiff vulnerability CVE-2009-2285 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libtiff4 3.7.4-1ubuntu3.4 Ubuntu 8.04 LTS: libtiff4 3.8.2-7ubuntu3.2 Ubuntu 8.10: libtiff4 3.8.2-11ubuntu0.8.10.1 Ubuntu 9.04: libtiff4 3.8.2-11ubuntu0.9.04.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that the TIFF library did not correctly handle certain malformed TIFF images. If a user or automated system were tricked into processing a malicious image, a remote attacker could cause an application linked against libtiff to crash, leading to a denial of service. Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 19878 69684a7a9c033fb40c755d2bb4dffaa2 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 764 2a6cbe50d507d9c402ad4e92fa1a66b8 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1280113 02cf5c3820bda83b35bb35b45ae27005 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 220708 159dcfd51cf69df380ea71620b922f04 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 282354 541c2a6b0fe97743b984dd97c20395fd http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 475612 4cb99e064c4547553f0edb081c529809 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 44662 4f662fbcf9fa548ab4f8b8754306c69b http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 49846 953651334379bbaca92baf34950e2405 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 205896 f5ca6a96e1d3dedb3daea18094d65ac3 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 258978 6f612fbbf5ef115b4dcce981dcacf46f http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 461822 ccb6e0322690b9e0f4064ee72813bd1f http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 44646 fedd7054ff09c4a761f0bf052adc9dbb http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 49176 4b422744db9046b2e6c24e2eeb8d0863 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 239714 2c126df7fad173e8e8facfbfe70d96bf http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 288002 38a94eccdd4d769d5c833a4c18861a66 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 475924 aae7d86246008c63a0ef95a08b5f4eb2 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 46874 da98b514589753068801921dc68ceae6 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 51514 80ac11ceaaffc8f848967b0811b7f5e2 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 208520 4abc2ee74c41ba87917b975a7cb758ed http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 269972 3cdfd7084bf54d17643e2f00793fb3a5 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 466632 b2c1bfb026aac831ced2ce4dafebf860 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 44594 f97d5668dd1b3deeb9992be92e1ffc7f http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 49728 c4ce31f33d03dc294f40ada0bc955887 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 18378 450fcf81a838b9c67637987a2b39088b http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 860 92cf9f6d3136c5b6fb52e4d123c0fdd5 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1333780 e6ec4ab957ef49d5aabc38b7a376910b amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 186242 28dff44adbabe76ab7e85ff2da365f9d http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 570796 315cdea73e2f4c28c891848d7e7e4fc0 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 130702 854535fab48a5f2a37a9256f61a38ab5 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 5064 4097c51386aaaafbfeae9eabaeb997c9 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 10494 49c45bed31e28bcd9d5e706f1c8db3cc i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 175048 01226d438f325312684575560d86d93b http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 552280 36c3a1e37d12f1992346a057e4dab075 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 122400 44cb0efa99a513084835be466da2cb7d http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 5048 db565d6e40fa1b15e6ff9b87a599c0d7 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 9942 c7f799a523da81cee7c90ade65be2ccd lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 177116 df191c9d5e2f48103589d92a59b902d1 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 554842 2d10224badec0434fbb9d21d432df89d http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7... Size/MD5: 123556 534d8b03274794d0563a3b48001143c7 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 4920 264e617e42f1c8972cb1b2bb18a91574 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 9976 e5940f1dbb7d090a4e5d47cca0daeca2 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 223238 2385fe8b199cce7295eaea9282cacf24 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 576794 51814c281f84fe2e0650d3f8e029ac4a http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7... Size/MD5: 134016 3df0fd7a4ad96106e2f5143f1645b102 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 7514 5963503e765f0fe71ffa80fbc60c162f http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 13286 3f3851bf7186b2d4450d35beeec0bb4d sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 178640 086f9b0f2e83f879e323fd924f8a89f2 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 558202 b334310f53743de237845e24fcd911ec http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7... Size/MD5: 122160 95fd3e3346b8dce74e274239d00c018b http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 4800 4a09138aa5f408d8fe49057f90cd0df1 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 10710 18641ce46b309baeb923165dd8e03158 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 37962 6c0956eecb7503bdb31a1bd4299efe47 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1328 7548341cdd1a4a9bae7c793b6f677233 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1333780 e6ec4ab957ef49d5aabc38b7a376910b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 334688 eff9827309f80a957196e9cd4da695d8 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 250518 61fe3d4dd8def51dbd2b5d9b4159a9bc http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 134084 c2adab0fb711634f47e695f3dd7447f8 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 6286 4b2563a3b767209061646fa6ae9ac85b http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 11898 81a456c5d470799230c6a44f9cc8f9b9 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 191424 82a9fa8eb070e32116b0d8ecd5a22e0d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 233298 a01eb038a2ccbef8b6603525bc3f2f75 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 125878 4eda3acf59c21aba5e1cc89e96bfa8cc http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 6272 a6ec88be551d729364d27af4863e1b11 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 11236 359d02f2dcdad53dcf72d0619aff697b http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 176054 42b7f0efbbc73b45d6e69053ebf33671 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 235774 ca05ad7d9e13ada710db91e738800eab http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 127584 cf7c86c00c4a0e05cac37039288965f0 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 6132 a865f92bff1a6c22b927ee8af097c433 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 11282 733acc73b8be40399063ff28128525f5 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-tool... Size/MD5: 178278 523c412323f658d260ae6a4d2ff40966 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 256510 d4b027ddeb929f3589956ba496cffba0 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 137148 e32d2bdd0d4a7cc71eec5e7daed52aa9 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 8724 cc701a74b724ca482b21a3dc321949c3 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 14234 cbff4f6e6faddfde029ff78ec9c48afb http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-tool... Size/MD5: 221040 f917935a1761ef9848e8c7c10e0ef06b sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 237666 5d6d33cc67ef0d14bd626ccb4dd9bcb6 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 123990 190cefef6ceb37c906aecaf1bf59b876 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 6006 6ec8001760781f1af9d8592866ff82fe http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 12046 a2b4639c81cb79b31b0646657205fa35 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-tool... Size/MD5: 183412 8ff9e8d6a32d80872131327e5203796c Updated packages for Ubuntu 9.04: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 37962 438146f23bcd7888fcc66c7b9d78098b http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1328 9ec573172e0fde174b56d0a3956ee35b http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3... Size/MD5: 1333780 e6ec4ab957ef49d5aabc38b7a376910b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 334670 fa4a10e51620299585fa1642196f2887 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 191466 a61b82a3393f44e40cd2cc0f640eb6c6 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 250604 cd4538b261cc9003e7c131adda8b51ca http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 134104 38fa2282b5e992c72a4ac79e0ece52b0 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 6286 401262f1a09831f0130f0db2872c97f6 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 11898 bdf96619188143fe417e8fa3bc5f780d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 176050 aa334ea8a28d5274741368d08b0f795d http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 233334 2f3bfd25e51a9cca95f4c58646318d29 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 125970 3ceceb06c0b6b94fa508e008f19408b7 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtif... Size/MD5: 6272 35faf1e62dc2e57509ef98116b4c7cfb http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/li... Size/MD5: 11228 0abf911853cdb7cd1020f5c43782ab92 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 178280 db957830b08ec26fc211e78674f175c7 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 235772 146d7fbd61e3885873c2d884c3f289be http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 127566 bec17756ac7d7c5c94fb4823b297b6df http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 6126 36ebd0a2f1faaa2d67cdc9687377047b http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 11276 efd0a2c2218bfbcd1a9211d85945fa43 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 221080 3ba1c50579c20918faaef6191ed041eb http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 256338 eeb0f7815019f42674e3ed5fdfc72036 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 136980 638fb9b42c406d00b1510a926b5ed3ba http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 8726 50665d1f710dba6dc2742e2bb57acf02 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 14228 3f0ee5ed9b9d24b19ec162f1c71127ce sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.... Size/MD5: 183404 2852bdbf720008437395f7821c827fd4 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8... Size/MD5: 237662 9da18282c48f96aabf98965c0717d9b2 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-1... Size/MD5: 123884 1600707f7478f01789738311510f598a http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8... Size/MD5: 5970 15efadc4f18985aa1fadc50bec55d099 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-open... Size/MD5: 12018 1475302ae62826aced512ca859a2c237 -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security... (Log in to post comments)
|
||||||||||||||||||||||