2016.09.23 14:36 "[Tiff] LibTIFF vulnerabilities", by Yves Younan

2016.09.24 14:45 "Re: [Tiff] LibTIFF vulnerabilities", by Bob Friesenhahn

2016-09-23 18:34 GMT-04:00 Even Rouault <even.rouault@spatialys.com>:

Before that, ideally more people would help looking at fixing the issues themselves. I'm personnaly not going to look at the Cisco reports in the short term, having already exceeded my volunteer time & energy on reports from other folks, and Bob wrote to me he's busy with other things. So if other libtiff committers want to join the party, please raise your hand.

I may be able to put a little time on it over the weekend if someone would kindly let me know about the bugs. My involvement stops at comitting a fix to CVS though.

After I finish mowing my lawn, I plan to test with various reported problem files and distill a set of files which still cause problems.

Bob
--
Bob Friesenhahn
bfriesen@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maintainer, http://www.GraphicsMagick.org/