---------------------------------------------------------------------Fedora Update Notification
FEDORA-2006-877
2006-08-02
---------------------------------------------------------------------Product     : Fedora Core 5
Name        : libtiff
Version     : 3.7.4
Release     : 8
Summary     : Library of functions for manipulating TIFF format image files
Description :
The libtiff package contains a library of functions for manipulating
TIFF (Tagged Image File Format) image format files.  TIFF is a widely
used file format for bitmapped images.  TIFF files usually end in the
.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF
format image files.

---------------------------------------------------------------------Update Information:

The libtiff package contains a library of functions for
manipulating TIFF (Tagged Image File Format) files.

Tavis Ormandy of Google discovered a number of flaws in
libtiff during a security audit. An attacker could create a
carefully crafted TIFF file in such a way that it was
possible to cause an application linked with libtiff to
crash or possibly execute arbitrary code. (CVE-2006-3459,
CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463,
CVE-2006-3464, CVE-2006-3465)

All users are advised to upgrade to these updated packages,
which contain backported fixes for these issues. 
---------------------------------------------------------------------* Mon Jul 24 2006 Matthias Clasen 
- Fix several vulnerabilities (CVE-2006-3460 CVE-2006-3461
  CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

---------------------------------------------------------------------This update can be downloaded from:
    
08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205  SRPMS/libtiff-3.7.4-8.src.rpm
08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205  noarch/libtiff-3.7.4-8.src.rpm
60f1c0c5b77d3ddd84c89db1a8043e17e260a951  ppc/libtiff-devel-3.7.4-8.ppc.rpm
c2ccb1082dd9a15b1967a0e98958fa1a33d6b09e  ppc/debug/libtiff-debuginfo-3.7.4-8.ppc.rpm
76eac08c94eec6695b5c92977dd504f77cf33002  ppc/libtiff-3.7.4-8.ppc.rpm
a5c9b6ac949b5b3726d9644dbcdc53ed83d4d0e5  x86_64/libtiff-devel-3.7.4-8.x86_64.rpm
6e27e7836a2bf1461c75a3090b449e918a76a639  x86_64/libtiff-3.7.4-8.x86_64.rpm
6a59ff695e3ed94accdd4ad03499798c28ec593e  x86_64/debug/libtiff-debuginfo-3.7.4-8.x86_64.rpm
80cfbbf532055db6817364af7f6692a404441a9e  i386/libtiff-devel-3.7.4-8.i386.rpm
0603b7d203d07e534d0b6796a78d22a8fa95c5a6  i386/libtiff-3.7.4-8.i386.rpm
dd1ba7e95e0d90a103c7adffabe224dc006bf01d  i386/debug/libtiff-debuginfo-3.7.4-8.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at .
---------------------------------------------------------------------_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora Core 5 Update: libtiff-3.7.4-8

August 2, 2006
The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) files

Summary

The libtiff package contains a library of functions for manipulating

TIFF (Tagged Image File Format) image format files. TIFF is a widely

used file format for bitmapped images. TIFF files usually end in the

.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF

format image files.

The libtiff package contains a library of functions for

manipulating TIFF (Tagged Image File Format) files.

Tavis Ormandy of Google discovered a number of flaws in

libtiff during a security audit. An attacker could create a

carefully crafted TIFF file in such a way that it was

possible to cause an application linked with libtiff to

crash or possibly execute arbitrary code. (CVE-2006-3459,

CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463,

CVE-2006-3464, CVE-2006-3465)

All users are advised to upgrade to these updated packages,

which contain backported fixes for these issues.

- Fix several vulnerabilities (CVE-2006-3460 CVE-2006-3461

CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205 SRPMS/libtiff-3.7.4-8.src.rpm

08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205 noarch/libtiff-3.7.4-8.src.rpm

60f1c0c5b77d3ddd84c89db1a8043e17e260a951 ppc/libtiff-devel-3.7.4-8.ppc.rpm

c2ccb1082dd9a15b1967a0e98958fa1a33d6b09e ppc/debug/libtiff-debuginfo-3.7.4-8.ppc.rpm

76eac08c94eec6695b5c92977dd504f77cf33002 ppc/libtiff-3.7.4-8.ppc.rpm

a5c9b6ac949b5b3726d9644dbcdc53ed83d4d0e5 x86_64/libtiff-devel-3.7.4-8.x86_64.rpm

6e27e7836a2bf1461c75a3090b449e918a76a639 x86_64/libtiff-3.7.4-8.x86_64.rpm

6a59ff695e3ed94accdd4ad03499798c28ec593e x86_64/debug/libtiff-debuginfo-3.7.4-8.x86_64.rpm

80cfbbf532055db6817364af7f6692a404441a9e i386/libtiff-devel-3.7.4-8.i386.rpm

0603b7d203d07e534d0b6796a78d22a8fa95c5a6 i386/libtiff-3.7.4-8.i386.rpm

dd1ba7e95e0d90a103c7adffabe224dc006bf01d i386/debug/libtiff-debuginfo-3.7.4-8.i386.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-package-announce

FEDORA-2006-877 2006-08-02 Name : libtiff Version : 3.7.4 Release : 8 Summary : Library of functions for manipulating TIFF format image files Description : The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if you need to manipulate TIFF format image files. The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) files. Tavis Ormandy of Google discovered a number of flaws in libtiff during a security audit. An attacker could create a carefully crafted TIFF file in such a way that it was possible to cause an application linked with libtiff to crash or possibly execute arbitrary code. (CVE-2006-3459, CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463, CVE-2006-3464, CVE-2006-3465) All users are advised to upgrade to these updated packages, which contain backported fixes for these issues. - Fix several vulnerabilities (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465) 08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205 SRPMS/libtiff-3.7.4-8.src.rpm 08e4a9a8f1d7e2eaf8dbe3ffcce73e34e3192205 noarch/libtiff-3.7.4-8.src.rpm 60f1c0c5b77d3ddd84c89db1a8043e17e260a951 ppc/libtiff-devel-3.7.4-8.ppc.rpm c2ccb1082dd9a15b1967a0e98958fa1a33d6b09e ppc/debug/libtiff-debuginfo-3.7.4-8.ppc.rpm 76eac08c94eec6695b5c92977dd504f77cf33002 ppc/libtiff-3.7.4-8.ppc.rpm a5c9b6ac949b5b3726d9644dbcdc53ed83d4d0e5 x86_64/libtiff-devel-3.7.4-8.x86_64.rpm 6e27e7836a2bf1461c75a3090b449e918a76a639 x86_64/libtiff-3.7.4-8.x86_64.rpm 6a59ff695e3ed94accdd4ad03499798c28ec593e x86_64/debug/libtiff-debuginfo-3.7.4-8.x86_64.rpm 80cfbbf532055db6817364af7f6692a404441a9e i386/libtiff-devel-3.7.4-8.i386.rpm 0603b7d203d07e534d0b6796a78d22a8fa95c5a6 i386/libtiff-3.7.4-8.i386.rpm dd1ba7e95e0d90a103c7adffabe224dc006bf01d i386/debug/libtiff-debuginfo-3.7.4-8.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce

Change Log

References

Update Instructions

Severity
Name : libtiff
Version : 3.7.4
Release : 8
Summary : Library of functions for manipulating TIFF format image files

Related News

1.Penguin Landscape Esm H320
2 - 3 min read
The recent release of AlmaLinux 9.4 , closely aligned with Red Hat Enterprise Linux (RHEL) 9.4 , presents Linux admins and infosec professionals
11.Locks IsometricPattern Esm H320
2 - 3 min read
The upcoming release of Linux Mint 22 will introduce significant changes, particularly in handling XApp , GNOME applications, and the Software
2.Motherboard Esm H320
2 - 3 min read
German software engineer Lennart Poettering recently presented run0 , a new tool in systemd v256 that aims to address the security concerns
22.Lock ScreenEffect Esm H320
2 - 3 min read
Red Hat recently released its newest enterprise Linux distro, Red Hat Enterprise Linux (RHEL) 9.4 , which introduces several features designed to
8.Locks HexConnections CodeGlobe Esm H320
1 - 2 min read
The latest release of Debian , one of the oldest and most trusted distributions within the Linux ecosystem, redefines security, stability, and
20.Lock AbstractDigital Circular Esm H320
1 - 2 min read
The Ubuntu security team has recently discovered and addressed multiple vulnerabilities in the Apache HTTP Server. The vulnerabilities affected
1.Penguin Landscape Esm H320
1 - 2 min read
A critical vulnerability was discovered in the Linux kernel's netfilter subsystem, specifically within the nf_tables component, posing potential
19.Laptop Bed Esm H320
2 - 3 min read
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved