Debian Security Advisory 5108-1

Debian Security Advisory 5108-1: Posted Mar 28, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5108-1 - Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service if malformed image files are processed.; tags | advisory, denial of service, vulnerability; systems | linux, debian; advisories | CVE-2022-0561, CVE-2022-0562, CVE-2022-0865, CVE-2022-0891, CVE-2022-0907, CVE-2022-0908, CVE-2022-0909, CVE-2022-0924, CVE-2022-22844; SHA-256 | 8831fb80ad03cae1f6e17e334eabf7fea62aa2865a36971031495169432c3ad6; Download | Favorite | View

Debian Security Advisory 5108-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5108-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
March 24, 2022                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : tiff
CVE ID         : CVE-2022-0561 CVE-2022-0562 CVE-2022-0865 CVE-2022-0891 
                 CVE-2022-0907 CVE-2022-0908 CVE-2022-0909 CVE-2022-0924 
                 CVE-2022-22844

Multiple vulnerabilities have been discovered in the libtiff library
and the included tools, which may result in denial of service if
malformed image files are processed.

For the oldstable distribution (buster), these problems have been fixed
in version 4.1.0+git191117-2~deb10u4.

For the stable distribution (bullseye), these problems have been fixed in
version 4.2.0-1+deb11u1.

We recommend that you upgrade your tiff packages.

For the detailed security status of tiff please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/tiff

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=APsW
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 239 files
indoushka 79 files
Ubuntu 79 files
Debian 22 files
LiquidWorm 20 files
Google Security Research 8 files
Gentoo 7 files
malvuln 6 files
Emiliano Febbi 4 files
Seth Jenkins 4 files

File Archives

Systems

AIX (430)
Apple (2,117)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,147)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (391)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,676)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,132)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,946)
UNIX (9,472)
UnixWare (188)
Windows (6,784)
Other

Debian Security Advisory 5108-1

Debian Security Advisory 5108-1

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 5108-1

Share This

Debian Security Advisory 5108-1

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems