-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 23 Nov 2023 15:39:53 +0800 Source: tiff Architecture: source Version: 4.2.0-1+deb11u5 Distribution: bullseye-security Urgency: high Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org> Changed-By: Aron Xu <aron@debian.org> Changes: tiff (4.2.0-1+deb11u5) bullseye-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix a memory leak in tiffcrop (CVE-2023-3576) * Fix buffer overflows in tiffcp and raw2tiff (CVE-2023-40745, CVE-2023-41175) Checksums-Sha1: 00405a97564d89295dcec7d00805ba83564d15a6 2116 tiff_4.2.0-1+deb11u5.dsc 49e8ac19f5640839bf3890ebaaaade8826c1b79b 41268 tiff_4.2.0-1+deb11u5.debian.tar.xz 10dc94997bd28699ef0ece18e333932648b49ba5 7617 tiff_4.2.0-1+deb11u5_source.buildinfo Checksums-Sha256: eeb72e3449968ab5d39fdf7f999b787580837fcf7751f30e16750659919fd3d4 2116 tiff_4.2.0-1+deb11u5.dsc 472770be431abb4f9fdaf2f0e2306b8980a47b1a55a3c10a2224f2c8833fa6a0 41268 tiff_4.2.0-1+deb11u5.debian.tar.xz 830125d51f81a8c9a897d1d9da57bc67a94e433139f80ca702c267f80f19a5bc 7617 tiff_4.2.0-1+deb11u5_source.buildinfo Files: b92b940c6619c1c5c1c96955d6db5e66 2116 libs optional tiff_4.2.0-1+deb11u5.dsc 2e4eb83879800f3a0d3627aa37a06615 41268 libs optional tiff_4.2.0-1+deb11u5.debian.tar.xz e6d9942dc6f0c50ab211b55e2d9846ba 7617 libs optional tiff_4.2.0-1+deb11u5_source.buildinfo -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmVfByYACgkQO1LKKgqv 2VTUtQf/QHEbBZmC++bBJW5UuomWmEfcBd4XqiozXF33II/RLj3Vrs0khi808gcH ap5qaKLm3/WUEzkqwusVLklaYXaXg6f/tr9V7MzgUCB5j5GkLAtDIJCSpO7PI+Q6 XbLn5UGkJ48sfoYKqfFyJvPmQ2KAtM+ovWp9uTGNfyoyKAQlpcVZNrGh9gNm4gQo Nm8E6mBerl7V17kaQtR3914KAOpcASIfqMVACGwi9OP/GiFUzjj7eRgEcIID2Ga5 G3iRhkwsfX1VAGzbCumGWb/0fYflbEPYOfdGO6PTPEqCxFG16nxgs+8fKIeBJu1z UrrwQMX+6MA+crEQqkT13LOR7ovgGw== =9D7z -----END PGP SIGNATURE-----
