☰LibTiff Mailing List Archive

2022.10.24 17:04 "[Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson

2022.10.26 20:50 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Sulau
- 2022.10.26 21:49 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson
- 2022.11.04 21:12 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson
  - 2022.11.04 23:09 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Kurt Schwehr
    - 2022.11.04 23:12 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Jeff Breidenbach
    - 2022.11.07 18:57 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson
      - 2022.11.07 23:40 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Bob Friesenhahn
        2022.11.08 01:40 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson

2022.11.07 18:57 "Re: [Tiff] clarification on the fix status for new CVE-2022-3570?", by Ellen Johnson

Thank you Kurt. And thank you to all the libtiff developers.

Kurt, thanks for your suggestion about using libtiff from head as you do for Google and it would be great if we could do that too. However here at MathWorks our product security team requires us to use official library releases. Only under rare circumstances would we be able to obtain an exception for this policy.