Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libtiff-3.7.3-4tr RPM for i586

From Trustix 3.0 for i586

Name: libtiff Distribution: Trustix Secure Linux
Version: 3.7.3 Vendor: Comodo Trustix
Release: 4tr Build date: Thu Aug 3 20:14:33 2006
Group: Trustix Official Build host: ttrmgtnived.comodo.net
Size: 1164695 Source RPM: libtiff-3.7.3-4tr.src.rpm
Packager: Comodo Trustix <http://www.trustix.com>
Url: http://www.libtiff.org/
Summary: A library of functions for manipulating TIFF format image files.
 
The libtiff package contains a library of functions for manipulating
TIFF (Tagged Image File Format) image format files.  TIFF is a widely
used file format for bitmapped images.  TIFF files usually end in the
.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF
format image files.

Provides

Requires

License

distributable

Changelog

* Thu Aug 03 2006 Nived Gopalan <nived at trustix dot org> 3.7.3-4tr
  - SECURITY Fix: Tavis Ormandy, Google Security Team has reported some
    vulnerabilities in libTIFF, which can be exploited by malicious people
    to cause a DoS or potentially compromise a vulnerable system. The
    vulnerabilities are caused due to various heap and integer overflows
    when processing TIFF images and can be exploited via a specially
    crafted TIFF image.
  
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has
    assigned the names CVE-2006-3459, CVE-2006-3460, CVE-2006-3461,
    CVE-2006-3462, CVE-2006-3463, CVE-2006-3464 and CVE-2006-3465
    these issues.
* Thu Jun 15 2006 Nived Gopalan <nived at trustix dot org> 3.7.3-3tr
  - SECURITY Fix: gpe92 has discovered a vulnerability in LibTIFF caused
    due to a boundary error within tiff2pdf when handling a TIFF file with
    a "DocumentName" tag that contains UTF-8 characters. This can be 
    exploited to cause a stack-based buffer overflow and may allow 
    arbitrary code execution.
  - Stack-based buffer overflow in the tiffsplit command in libtiff  might
    allow attackers to execute arbitrary code via a long filename.
  
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has
    assigned the names CVE-2006-2193 and CVE-2006-2656 these issues.
* Thu May 04 2006 Nived Gopalan <nived at trustix dot org> 3.7.3-2tr
  - SECURITY Fix: Tavis Ormandy has reported some vulnerabilities in LibTIFF,
    which can be exploited by malicious people to cause a DoS and potentially
    to compromise a user's system.
  - Several unspecified errors in the "TIFFFetchAnyArray()" function and in 
    the cleanup functions can be exploited to crash an application linked
    against LibTIFF when a specially crafted TIFF image is processed.
  - Integer overflow in the TIFFFetchData function in tif_dirread.c allows
    context-dependent attackers to cause a denial of service and possibly
    execute arbitrary code via a crafted TIFF image.
  - A double free error in tif_jpeg.c within the setfield/getfield methods
    in the cleanup functions can be exploited to crash an application linked
    against LibTIFF and may allow arbitrary code execution when a specially
    crafted TIFF image is processed.
  - The TIFFToRGB function in libtiff allows remote attackers to cause a 
    denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values
    that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
  
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has
    assigned the names CVE-2006-2024, CVE-2006-2025, CVE-2006-2026 and
    CVE-2006-2120 these issues.
* Thu Jul 21 2005 Hasher Jamaludeen  <hasher at comodo dot com> 3.7.3-1tr
  - New Upstream
  - Security Fix: Stack-based buffer overflow in libTIFF allows remote 
    attackers to execute arbitrary code via a TIFF file with a malformed 
    BitsPerSample tag.
  
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has
    assigned the name CAN-2005-1544.
* Thu Mar 17 2005 Bipin S  <bipin at comodo dot com> 3.7.2-1tr
  - New Upstream
* Thu Jan 06 2005 Ajith Thampi <ajith at comodo dot com> 3.7.1-1tr
  - New Upstream
  - spec cleanup
  - CAN-2004-1183, CAN-2004-1308
* Tue Oct 12 2004 Oystein Viggen <oysteivi at trustix dot com> 3.6.1-1tr
  - New upstream
  - CAN-2004-0803, CAN-2004-0886
* Wed Jun 18 2003 Erlend Midttun <erlendbm at trustix dot com> 3.5.7-2tr
  - Big rebuild
* Mon Apr 14 2003 Gerald Dachs <gda at trustix dot org> 3.5.7-1gd
  - initial release

Files

/usr/bin/bmp2tiff
/usr/bin/fax2ps
/usr/bin/fax2tiff
/usr/bin/gif2tiff
/usr/bin/pal2rgb
/usr/bin/ppm2tiff
/usr/bin/ras2tiff
/usr/bin/raw2tiff
/usr/bin/rgb2ycbcr
/usr/bin/thumbnail
/usr/bin/tiff2bw
/usr/bin/tiff2pdf
/usr/bin/tiff2ps
/usr/bin/tiff2rgba
/usr/bin/tiffcmp
/usr/bin/tiffcp
/usr/bin/tiffdither
/usr/bin/tiffdump
/usr/bin/tiffinfo
/usr/bin/tiffmedian
/usr/bin/tiffset
/usr/bin/tiffsplit
/usr/lib/libtiff.so.3
/usr/lib/libtiff.so.3.7.3
/usr/share/doc/libtiff-3.7.3
/usr/share/doc/libtiff-3.7.3/COPYRIGHT
/usr/share/doc/libtiff-3.7.3/README
/usr/share/doc/libtiff-3.7.3/VERSION
/usr/share/man/man1/bmp2tiff.1.gz
/usr/share/man/man1/fax2ps.1.gz
/usr/share/man/man1/fax2tiff.1.gz
/usr/share/man/man1/gif2tiff.1.gz
/usr/share/man/man1/pal2rgb.1.gz
/usr/share/man/man1/ppm2tiff.1.gz
/usr/share/man/man1/ras2tiff.1.gz
/usr/share/man/man1/raw2tiff.1.gz
/usr/share/man/man1/rgb2ycbcr.1.gz
/usr/share/man/man1/sgi2tiff.1.gz
/usr/share/man/man1/thumbnail.1.gz
/usr/share/man/man1/tiff2bw.1.gz
/usr/share/man/man1/tiff2pdf.1.gz
/usr/share/man/man1/tiff2ps.1.gz
/usr/share/man/man1/tiff2rgba.1.gz
/usr/share/man/man1/tiffcmp.1.gz
/usr/share/man/man1/tiffcp.1.gz
/usr/share/man/man1/tiffdither.1.gz
/usr/share/man/man1/tiffdump.1.gz
/usr/share/man/man1/tiffgt.1.gz
/usr/share/man/man1/tiffinfo.1.gz
/usr/share/man/man1/tiffmedian.1.gz
/usr/share/man/man1/tiffset.1.gz
/usr/share/man/man1/tiffsplit.1.gz
/usr/share/man/man1/tiffsv.1.gz

Generated by rpm2html 1.8.1

Fabrice Bellet, Mon May 20 05:14:11 2013