Debian-LTS alert DLA-692-1 (tiff3) [LWN.net]


From:
    	       Raphael Hertzog <hertzog@debian.org> 
To:
    	       debian-lts-announce@lists.debian.org 
Subject:
    	       [SECURITY] [DLA 692-1] tiff3 security update 
Date:
    	       Wed, 2 Nov 2016 13:40:37 +0100
Message-ID:
    	       <20161102124037.ts4kbkn55f5u7y4q@home.ouaza.com>
Package        : tiff3
Version        : 3.9.6-11+deb7u2
CVE ID         : CVE-2015-7554 CVE-2016-5318

Applications using libtiff can trigger buffer overflows through
TIFFGetField() when processing TIFF images with unknown tags.

For Debian 7 "Wheezy", these problems have been fixed in version
3.9.6-11+deb7u2.

We recommend that you upgrade your tiff3 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

From:		Raphael Hertzog <hertzog@debian.org>
To:		debian-lts-announce@lists.debian.org
Subject:		[SECURITY] [DLA 692-1] tiff3 security update
Date:		Wed, 2 Nov 2016 13:40:37 +0100
Message-ID:		<20161102124037.ts4kbkn55f5u7y4q@home.ouaza.com>