Merge tiff 4.4.0-5 (main) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tiff (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Please merge tiff 4.4.0-5 (main) from Debian unstable (main)
Changelog entries since current kinetic version 4.4.0-4ubuntu3:
tiff (4.4.0-5) unstable; urgency=high
* Backport security fix for CVE-2022-3597, CVE-2022-3626 and CVE-2022-3627,
out of bounds write and denial of service via a crafted TIFF file.
* Backport security fix for CVE-2022-3570, multiple heap buffer overflows
via crafted TIFF file.
* Backport security fix for CVE-2022-3599, denial-of-service via a crafted
TIFF file.
* Backport security fix for CVE-2022-3598, denial-of-service via a crafted
TIFF file (closes: #1022555).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 23 Oct 2022 22:38:15 +0200
CVE References
Changed in tiff (Ubuntu): | |
assignee: | nobody → Amin Bandali (bandali) |
Changed in tiff (Ubuntu): | |
status: | Fix Committed → Fix Released |
Attaching debdiff with kinetic per wiki's Merging guide.