AWARE SYSTEMS
TIFF and LibTiff Mail List Archive

Thread

2011.03.15 20:27 "[Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Gregory P. Ennis
2011.03.15 21:04 "Re: [Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Gregory P. Ennis
2011.03.15 21:15 "Re: [Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Even Rouault
2011.03.15 21:33 "Re: [Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Gregory P. Ennis
2011.03.15 21:09 "Re: [Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Lee Howard

2011.03.15 21:15 "Re: [Tiff] Tiff Readers from Fedora 5 versas Fedora 14 scanned from a Toshiba 350/550 scanner", by Even Rouault

Le mardi 15 mars 2011 22:04:55, Gregory P. Ennis a écrit:

Hum, I see this is a CCITTFAX4 image. You got caught by a security fix for CVE-2011-0192 that was found to be incorrect in its initial attempt. It has been later fixed in upstream libtiff in http://bugzilla.maptools.org/show_bug.cgi?id=2297. It is very likely that the correction will also go to Fedora in few days (the Ubuntu libtiff also had the same issue and it has been updated today). This has already been reported in https://bugzilla.redhat.com/show_bug.cgi?id=678635

List,

--------------------------------------------------------------

I have a file that demonstrates the problem located at:

www.pomec.net/test.tif

Greg