Your message dated Fri, 05 Oct 2012 21:32:38 +0000
with message-id <e1tkfve-0000jv...@franck.debian.org>
and subject line Bug#688944: fixed in tiff 4.0.2-3
has caused the Debian Bug report #688944,
regarding tiff: CVE-2012-4447
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
688944: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688944
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: tiff
Severity: grave
Tags: security
Justification: user security hole
Another buffer overflow, please see here for details:
https://bugzilla.redhat.com/show_bug.cgi?id=860198
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: tiff
Source-Version: 4.0.2-3
We believe that the bug you reported is fixed in the latest version of
tiff, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 688...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jay Berkenbilt <q...@debian.org> (supplier of updated tiff package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 05 Oct 2012 17:04:38 -0400
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff5-alt-dev libtiff-tools
libtiff-opengl libtiff-doc
Architecture: source all amd64
Version: 4.0.2-3
Distribution: unstable
Urgency: high
Maintainer: Jay Berkenbilt <q...@debian.org>
Changed-By: Jay Berkenbilt <q...@debian.org>
Description:
libtiff-doc - TIFF manipulation and conversion documentation
libtiff-opengl - TIFF manipulation and conversion tools
libtiff-tools - TIFF manipulation and conversion tools
libtiff5 - Tag Image File Format (TIFF) library
libtiff5-alt-dev - Tag Image File Format library (TIFF), alternative
development fil
libtiff5-dev - Tag Image File Format library (TIFF), development files
libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Closes: 688944
Changes:
tiff (4.0.2-3) unstable; urgency=high
.
* Add fix for CVE-2012-4777, a buffer overrun. (Closes: #688944)
Checksums-Sha1:
c31bd291517d0441e70624ee079677dcce7463ab 2124 tiff_4.0.2-3.dsc
e590a716c05913fe0c76b630ec477c2100b73e8b 15269 tiff_4.0.2-3.debian.tar.gz
50a6cb10ab7b4c73319865332402ea2843fd98bf 395272 libtiff-doc_4.0.2-3_all.deb
d4f86bb9cbd0624f8df50bf184b45fbd6dcf3f6f 233810 libtiff5_4.0.2-3_amd64.deb
41f9c9e23b7d5cdd7aa3eaaf8b54d99149428560 72964 libtiffxx5_4.0.2-3_amd64.deb
bd1a544fb8a17d8383e61ffcf956d7e18309f6ca 375662 libtiff5-dev_4.0.2-3_amd64.deb
812a117b8ee38591c3fd656d6f0d73d9603242c9 295616
libtiff5-alt-dev_4.0.2-3_amd64.deb
d56371ecfac5aa3c946f9dca0a54eaccc7995820 336634 libtiff-tools_4.0.2-3_amd64.deb
5a67e1d612019efaa12a2c3b826da6cff110ae38 78636 libtiff-opengl_4.0.2-3_amd64.deb
Checksums-Sha256:
6dd04279cb1c8785a1ac50f275e3797b8e11c6bb46078f9a55477f72e893cdad 2124
tiff_4.0.2-3.dsc
8113e4bbdc2db222076b041fad83c284e24f4fd5ac1ccb818cde65f35f62b5e7 15269
tiff_4.0.2-3.debian.tar.gz
8056564de4d597885041068edf3f0cd6d756d042f74aadd5cce7e7f27b97c913 395272
libtiff-doc_4.0.2-3_all.deb
ad3b3f35de2ebb01b85a8e62ef8e29c602928dd4b9e59f3980dfc7197cec6b00 233810
libtiff5_4.0.2-3_amd64.deb
600ef60d2a6b778530095b8dad2cc4aeaeb7b87303c1f5cb6553e6542def95a3 72964
libtiffxx5_4.0.2-3_amd64.deb
9696c2df0f8c51e20cfd515b564d4a3350a748f1debbf0ce09b6680c0d1e2e08 375662
libtiff5-dev_4.0.2-3_amd64.deb
464feda62d0e6507a767f929b146e54739f0132a83395d4983c9792e5810844c 295616
libtiff5-alt-dev_4.0.2-3_amd64.deb
3440ea05d3e364995085d2df8d6efb9095f69b6e205886466c6bc0929a65ce5b 336634
libtiff-tools_4.0.2-3_amd64.deb
03db6310d525324494d770c98c0850619c6a5c4953b698bf4cb51d0b2893a050 78636
libtiff-opengl_4.0.2-3_amd64.deb
Files:
5108f6b9e7380889d8717208b183cbd3 2124 libs optional tiff_4.0.2-3.dsc
fb07fbe2c407941eaada78b0da90c6a9 15269 libs optional tiff_4.0.2-3.debian.tar.gz
83c8b561a33fdab32e701737aa4b654c 395272 doc optional
libtiff-doc_4.0.2-3_all.deb
875df8c3c3e703d9839959fc3d9b212f 233810 libs optional
libtiff5_4.0.2-3_amd64.deb
e6857d51834761e556a07526939c1a11 72964 libs optional
libtiffxx5_4.0.2-3_amd64.deb
297ce925546458840be4b819f97f865b 375662 libdevel optional
libtiff5-dev_4.0.2-3_amd64.deb
03a637057334ebf11137bfe03b492e68 295616 libdevel optional
libtiff5-alt-dev_4.0.2-3_amd64.deb
a68282f3a4539a7329c767c54b9d29b0 336634 graphics optional
libtiff-tools_4.0.2-3_amd64.deb
a6bb256d85230eeee5baea8601d0e7d3 78636 graphics optional
libtiff-opengl_4.0.2-3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=ec5h
-----END PGP SIGNATURE-----
--- End Message ---
