Linux Today - Advisories, August 2, 2006

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices

Technology Jobs

LinuxToday Newsletters

Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com

Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

Current Newswire:

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Using Wii remote with Android Device- Taking Gaming to the Next Level

Commercial Support now available for the open-source NGINX Web server

Linux Top 5: Linux's New Fellow

Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Post A Job | Post A Resume

:Advisories, August 2, 2006

Advisories, August 2, 2006
Aug 3, 2006, 03 :45 UTC (0 Talkback[s]) (2361 reads)

Debian GNU/Linux

Debian Security Advisory DSA 1134-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
August 2nd, 2006 http://www.debian.org/security/faq

Package : mozilla-thunderbird
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2006-1942 CVE-2006-2775 CVE-2006-2776 CVE-2006-2777 CVE-2006-2778 CVE-2006-2779 CVE-2006-2780 CVE-2006-2781 CVE-2006-2782 CVE-2006-2783 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787
CERT advisories: VU#237257 VU#243153 VU#421529 VU#466673 VU#575969
BugTraq ID : 18228

Several security related problems have been discovered in Mozilla which are also present in Mozilla Thunderbird. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:

CVE-2006-1942

Eric Foley discovered that a user can be tricked to expose a local file to a remote attacker by displaying a local file as image in connection with other vulnerabilities. [MFSA-2006-39]

CVE-2006-2775

XUL attributes are associated with the wrong URL under certain circumstances, which might allow remote attackers to bypass restrictions. [MFSA-2006-35]

CVE-2006-2776

Paul Nickerson discovered that content-defined setters on an object prototype were getting called by privileged user interface code, and "moz_bug_r_a4" demonstrated that the higher privilege level could be passed along to the content-defined attack code. [MFSA-2006-37]

CVE-2006-2777

A vulnerability allows remote attackers to execute arbitrary code and create notifications that are executed in a privileged context. [MFSA-2006-43]

CVE-2006-2778

Mikolaj Habryn a buffer overflow in the crypto.signText function that allows remote attackers to execute arbitrary code via certain optional Certificate Authority name arguments. [MFSA-2006-38]

CVE-2006-2779

Mozilla team members discovered several crashes during testing of the browser engine showing evidence of memory corruption which may also lead to the execution of arbitrary code. This problem has only partially been corrected. [MFSA-2006-32]

CVE-2006-2780

An integer overflow allows remote attackers to cause a denial of service and may permit the execution of arbitrary code. [MFSA-2006-32]

CVE-2006-2781

Masatoshi Kimura discovered a double-free vulnerability that allows remote attackers to cause a denial of service and possibly execute arbitrary code via a VCard. [MFSA-2006-40]

CVE-2006-2782

Chuck McAuley discovered that a text input box can be pre-filled with a filename and then turned into a file-upload control, allowing a malicious website to steal any local file whose name they can guess. [MFSA-2006-41, MFSA-2006-23, CVE-2006-1729]

CVE-2006-2783

Masatoshi Kimura discovered that the Unicode Byte-order-Mark (BOM) is stripped from UTF-8 pages during the conversion to Unicode before the parser sees the web page, which allows remote attackers to conduct cross-site scripting (XSS) attacks. [MFSA-2006-42]

CVE-2006-2784

Paul Nickerson discovered that the fix for CAN-2005-0752 can be bypassed using nested javascript: URLs, allowing the attacker to execute privileged code. [MFSA-2005-34, MFSA-2006-36]

CVE-2006-2785

Paul Nickerson demonstrated that if an attacker could convince a user to right-click on a broken image and choose "View Image" from the context menu then he could get JavaScript to run. [MFSA-2006-34]

CVE-2006-2786

Kazuho Oku discovered that Mozilla's lenient handling of HTTP header syntax may allow remote attackers to trick the browser to interpret certain responses as if they were responses from two different sites. [MFSA-2006-33]

CVE-2006-2787

The Mozilla researcher "moz_bug_r_a4" discovered that JavaScript run via EvalInSandbox can escape the sandbox and gain elevated privilege. [MFSA-2006-31]

For the stable distribution (sarge) these problems have been fixed in version 1.0.2-2.sarge1.0.8a.

For the unstable distribution (sid) these problems have been fixed in version 1.5.0.4-1 and xulrunner 1.5.0.4-1 for galeon and epiphany.

We recommend that you upgrade your Mozilla Thunderbird packages.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a.dsc
      Size/MD5 checksum: 999 a7547d54f6c987d16db915709bc5fe44
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a.diff.gz
      Size/MD5 checksum: 453026 eb2d71ba5d15fe803784950a13a47563
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2.orig.tar.gz
      Size/MD5 checksum: 33288906 806175393a226670aa66060452d31df4

Alpha architecture:

AMD64 architecture:

ARM architecture:

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_i386.deb
      Size/MD5 checksum: 11565160 23e9aaa2f8f1a62bf43efb7bc815fdcf
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_i386.deb
      Size/MD5 checksum: 3506098 169af4eda4ae283d48a0b1523b05bdd7
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_i386.deb
      Size/MD5 checksum: 145716 e63141ba6a893db986bd0e9cbcc575e9
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_i386.deb
      Size/MD5 checksum: 32480 2d23870e404431d77f83601ec81a7fda
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_i386.deb
      Size/MD5 checksum: 86962 ea63c9a6e99a6895ad7eb1fe70363b22

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_ia64.deb
      Size/MD5 checksum: 14618962 f0ae93cc731f61beb0599fac54445460
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_ia64.deb
      Size/MD5 checksum: 3290490 2d16d23f8042bad1273b992861011349
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_ia64.deb
      Size/MD5 checksum: 154412 1b39804a27f4b7dae90e92d7a39d4bb9
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_ia64.deb
      Size/MD5 checksum: 32490 818339f4a6d9e98182975f9d1a834939
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_ia64.deb
      Size/MD5 checksum: 106058 6b1214ef1b42a53af54389da726fd478

HP Precision architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_hppa.deb
      Size/MD5 checksum: 13561594 b7eb45b4c8829370a58b2d870021024e
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_hppa.deb
      Size/MD5 checksum: 3283714 f65b93a3a73a3dfc62d6f024c259a1db
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_hppa.deb
      Size/MD5 checksum: 152280 06e23e82444cacea77afdc87699f5773
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_hppa.deb
      Size/MD5 checksum: 32496 06a10d18ef8a1bc84b89b3cc50e8cad5
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_hppa.deb
      Size/MD5 checksum: 96308 076063aee6cf91541585b08fdf73a801

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_m68k.deb
      Size/MD5 checksum: 10786352 e5c9c4cb536f92fc2cab024541460b8f
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_m68k.deb
      Size/MD5 checksum: 3269592 909c5464deba45d965f5a0612f04becd
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_m68k.deb
      Size/MD5 checksum: 143968 6e45eef4d3241039abe41a638e9f34df
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_m68k.deb
      Size/MD5 checksum: 32522 494885109459853538c84e47c21635ec
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_m68k.deb
      Size/MD5 checksum: 81442 c978cb34ab778b06385814cd4ad51056

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_mips.deb
      Size/MD5 checksum: 11941536 ddf753469c129bf3fd2681a9bbc5e81a
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_mips.deb
      Size/MD5 checksum: 3277166 1f3efa2d140a400ad98b73ba33f6e35c
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_mips.deb
      Size/MD5 checksum: 146966 a5e221ce8c30ee3a12c1a3d6603c52dd
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_mips.deb
      Size/MD5 checksum: 32496 05e84094b89573c4aafac9b414bb0d34
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_mips.deb
      Size/MD5 checksum: 83704 a1006bc20c63a7d51607cc3249a88677

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_mipsel.deb
      Size/MD5 checksum: 11806560 dccdeef719f40ee45b6ea11a2e1d5675
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_mipsel.deb
      Size/MD5 checksum: 3278332 12657ea860ed91f17750e30458526dc9
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_mipsel.deb
      Size/MD5 checksum: 146522 b528200933d5bcb366959bfb21015b1b
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_mipsel.deb
      Size/MD5 checksum: 32496 5956a48e052e31695346398197734eef
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_mipsel.deb
      Size/MD5 checksum: 83552 a0a0035eadfb314ebd90a21f4e888275

PowerPC architecture:

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8a_s390.deb
      Size/MD5 checksum: 12697106 ba9085a2f7203579f62e288e3f1dd7ee
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8a_s390.deb
      Size/MD5 checksum: 3278522 7b17ff2d80845368acdf7263c1affc50
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8a_s390.deb
      Size/MD5 checksum: 150324 943c02d94e672ec2fe94c1303ee2679d
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8a_s390.deb
      Size/MD5 checksum: 32484 2cbf34e4da8492fe773465378e069ca6
    http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8a_s390.deb
      Size/MD5 checksum: 88194 e7ccfa32631e9acd0e96146f9c49a176

Sun Sparc architecture:

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 1135-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
August 2nd, 2006 http://www.debian.org/security/faq

Package : libtunepimp
Vulnerability : buffer overflow
Problem type : remote
Debian-specific: no
CVE ID : CVE-2006-3600
BugTraq ID : 18961
Debian Bug : 378091

Kevin Kofler discovered several stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp, a MusicBrainz tagging library, which allows remote attacers to cause a denial of service or execute arbitrary code.

For the stable distribution (sarge) these problems have been fixed in version 0.3.0-3sarge2.

For the unstable distribution (sid) these problems have been fixed in version 0.4.2-4.

We recommend that you upgrade your libtunepimp packages.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp_0.3.0-3sarge2.dsc
      Size/MD5 checksum: 1030 9a4920fa648987c785ca7a90389e26d2
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp_0.3.0-3sarge2.diff.gz
      Size/MD5 checksum: 6370 7398c09a7d071ae47a47d8cf439f98f4
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp_0.3.0.orig.tar.gz
      Size/MD5 checksum: 524889 f1f506914150c4917ec730f847ad4709

Alpha architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 24890 2978735432d84c89ae7298388469f45b
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 69628 caebe7ed98abb9434b8271a6a60bbcf3
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 183756 59e0e4beba76a472ab2871ff560e43db
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 400968 14a5497f7e5a29c7428051f9ac1197db
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 7514 ed92833051c36f1834d4c2e8431a995b
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 36986 3f20bf702c8afd5c515caedb3577d7c4
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_alpha.deb
      Size/MD5 checksum: 37012 b397a318bf98a9b8a66e92d813ec1417

AMD64 architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 22574 ab767e6a192e3435808cdc3c0f2eba10
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 64662 2b13c0f10121799469f5918b9457816c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 167846 c8a9826ed526df5f0b3db91671e86ff8
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 309342 989a04b1b26449ccef4534d3b573da3f
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 7062 3f59546ad6171eb57027961425008dda
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 35350 85910d25472fd6cd765c5ec70eaec73a
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_amd64.deb
      Size/MD5 checksum: 35350 ac75587d5816b4b7f4a8c297960c58de

ARM architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 21328 f0edf637f04bc0569f7d817f7ac4c15f
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 60078 11945b07935b831ebc12850951da1814
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 252294 1dc8ce3cacbafd0e7724c25534e8c2ac
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 429780 d4025de16da2eeba4daf3b8c373a1972
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 7494 4bbe28e891a9bbcc4e45f7b0fcaf3a18
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 30692 deec987c46ef0036daf8da7950250beb
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_arm.deb
      Size/MD5 checksum: 30704 e80752d9804d728e54cc21f213ebbc85

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 21680 0a120ab21f78a77bb59cb99ca1eb1b8f
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 64192 65733e6e2b007c958edddbaa2297ed8c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 172848 aae66182b0509ed6e9b9ef8fc1efe8e9
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 295464 bfab73e38dd99e38b6ed3ebc7872521c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 7384 6b0279cb428e28f0c25936f90c171e7e
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 32342 815c12dc0d0bda96bcc3e9e667acdfb1
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_i386.deb
      Size/MD5 checksum: 32346 ead31d0b6cd458c681bee2d4fc894df0

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 27032 4b4867843c38aec3e7d7cab211c50180
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 70892 51a6fc495685aa15bca597ba5d49481d
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 229114 30d7dd79ef08c59c3dccc707ed4c4149
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 404248 4417640aa53c74f2316f117788382668
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 7540 86e56a9b5ba5ebac8e1ce08415c81e5c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 41274 5d65583580941d6267755c95bacd6041
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_ia64.deb
      Size/MD5 checksum: 41290 af3f7132986f4f4eea952b6bf48ab86b

HP Precision architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 23038 70f7ff16fa268b83ec8112ea0943eef7
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 71002 d4b412a8e7367cbddde555e8bc12b5c4
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 202392 b45edc22062afbc716299c70bbde5e62
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 372742 113319297131816655e0b4e9884c0512
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 7388 90e1630a60eebc1316185ad3f17ecfc2
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 37312 9a1702305b151cc90c33fd037d211c40
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_hppa.deb
      Size/MD5 checksum: 37322 e664954cc2797cb6b982234f36a947fc

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 21260 ad6086a9b25ca8d5fde4dbc23ce9c692
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 65180 ecaf5f32f118c3bea03ee72feb3a706a
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 173120 94856cac57d86e7a03e3809965f0e788
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 294810 7f8a76aabf519488b7e6f566a80cbac4
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 7362 b4328d4446b3ac504452637a6fe6bd08
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 33760 6fad71c1af6746f309fbe8ba2a6eebbe
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_m68k.deb
      Size/MD5 checksum: 33790 10d2cbfb58b42889a2c163851e99751b

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 23990 dcda0902f1c1124f03e9120ebfde0bfd
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 41350 f7f8f4a0b7c25c235c6b9d8dad1d9d9c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 161176 b7d6241896195d7f314a439b372b127e
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 327600 eafb77ad18b8856fe45476197067b8e2
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 7488 b93b17c16646f9d2c43d3b713f0e414e
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 30832 51f3c2b19ec9e12feca6094bfc1c234c
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_mips.deb
      Size/MD5 checksum: 30830 075f88566e8bd20c7035ccb6bd5c75c1

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 24010 948df50ac97f84a3e87915cf8e2e1227
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 41174 58740675d89c0d3790ec8911e465e101
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 159904 17004743326aa4116d39a51f71205d10
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 327466 227c0388ec56c7d150d0155ae37c4e70
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 7506 bee85b2381fb78193452dd0b59a6ecae
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 30530 061f243e1eca9e6f26ef812964907a74
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_mipsel.deb
      Size/MD5 checksum: 30550 d3e03c3944ecc11589d63c9f9cfed9f2

PowerPC architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 24732 c9c38d154af36ad28637c763f8dcd117
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 65578 99ab71a5594f3f69c3e375da379dc530
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 163704 8f7a6aa6a353144c23a8eed9d364251e
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 313058 e4b4d41dcea114933b79a2f0acf1e933
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 7540 0a87f9037368c2326618c4fca8420823
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 34964 2a29738183724ddf8088457795a57044
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_powerpc.deb
      Size/MD5 checksum: 34974 195aaf1a53f0419a6333e49e91b0b2cc

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 22526 1193ac69323d7c312cd75793087c91b9
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 47592 e072c4b460e330972eecc8056ffdf62e
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 164408 bacc4965dccb7825f71a52bf61216168
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 293254 68deddeeff41080b0e13a8cab173dad0
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 7492 1d23ac5ea74763a38833f933141dd0fa
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 37268 2cf940107c56c3864fa97013bd21598b
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_s390.deb
      Size/MD5 checksum: 37252 ac915f3997f66e4c6a94ecee7c6cca37

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-bin_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 21478 93b66545509e935ce3a8be05e71a93c5
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp-perl_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 64890 2bfba94ca4422855510dfd2cbdc6ce02
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 163392 a65569a7c43e112ab422e0624a1e4bcb
    http://security.debian.org/pool/updates/main/libt/libtunepimp/libtunepimp2-dev_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 299368 c2075aa76dac67ab7c82196ae30a63c4
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python-tunepimp_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 7518 9d9f6ecf4323f7416adb06ccc22c5533
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.2-tunepimp_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 33272 a604ebd85536a7de80d1015114047451
    http://security.debian.org/pool/updates/main/libt/libtunepimp/python2.3-tunepimp_0.3.0-3sarge2_sparc.deb
      Size/MD5 checksum: 33280 3d50a7091fb5ed0038956a81c0bfd828

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 1136-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
August 2nd, 2006 http://www.debian.org/security/faq

Package : gpdf
Vulnerability : wrong input sanitising
Problem type : local (remote)
Debian-specific: no
CVE ID : CVE-2005-2097
BugTraq ID : 14529
Debian Bug : 334454

"infamous41md" and Chris Evans discovered several heap based buffer overflows in xpdf, the Portable Document Format (PDF) suite, which are also present in gpdf, the viewer with Gtk bindings, and which can lead to a denial of service by crashing the application or possibly to the execution of arbitrary code.

For the stable distribution (sarge) these problems have been fixed in version 2.8.2-1.2sarge5.

For the unstable distribution (sid) these problems have been fixed in version 2.10.0-4.

We recommend that you upgrade your gpdf package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5.dsc
      Size/MD5 checksum: 1663 d7cd341afa44a55b1d6b6e177506df73
    http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5.diff.gz
      Size/MD5 checksum: 37001 4c0f08229d68b89376f1dafbd2785602
    http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2.orig.tar.gz
      Size/MD5 checksum: 1245535 5ceb66aa95e51c4e1d6e10cb29560ff9

Alpha architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_alpha.deb
Size/MD5 checksum: 868192 a1165a52e231ad0d7288956259f6dac1

AMD64 architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_amd64.deb
Size/MD5 checksum: 795826 b77396935f929046e71688cf6c803718

ARM architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_arm.deb
Size/MD5 checksum: 781744 4bd8fcb7aa0e8d8073f9c834f492273e

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_i386.deb
Size/MD5 checksum: 782022 6e3c2f14a9f79a0fa8d6c7146329cf55

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_ia64.deb
Size/MD5 checksum: 958464 f60ab132197b6451be37e95c7b0802f6

HP Precision architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_hppa.deb
Size/MD5 checksum: 859960 52fc5ab1c1c7b0a337093196d08076af

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_m68k.deb
Size/MD5 checksum: 746044 07af12e76e683943d028347673b325dc

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_mips.deb
Size/MD5 checksum: 818708 789e70f91a8b43909790389833f5c2f9

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_mipsel.deb
Size/MD5 checksum: 811194 6f27ce39b1d79d49992ae66e6fc45b13

PowerPC architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_powerpc.deb
Size/MD5 checksum: 799932 f7f6e5df3d35a4e24ef714a02300bb89

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_s390.deb
Size/MD5 checksum: 776202 0c511feed7677d69e5e9b901239c25e0

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/g/gpdf/gpdf_2.8.2-1.2sarge5_sparc.deb
Size/MD5 checksum: 763980 90c9205b4bc9b61b46d8d46c09e74b83

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 1137-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
August 2nd, 2006 http://www.debian.org/security/faq

Package : tiff
Vulnerability : several
Problem type : local (remote)
Debian-specific: no
CVE IDs : CVE-2006-3459 CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465

Tavis Ormandy of the Google Security Team discovered several problems in the TIFF library. The Common Vulnerabilities and Exposures project identifies the following issues:

CVE-2006-3459

Several stack-buffer overflows have been discovered.

CVE-2006-3460

A heap overflow vulnerability in the JPEG decoder may overrun a buffer with more data than expected.

CVE-2006-3461

A heap overflow vulnerability in the PixarLog decoder may allow an attacker to execute arbitrary code.

CVE-2006-3462

A heap overflow vulnerability has been discovered in the NeXT RLE decoder.

CVE-2006-3463

An loop was discovered where a 16bit unsigned short was used to iterate over a 32bit unsigned value so that the loop would never terminate and continue forever.

CVE-2006-3464

Multiple unchecked arithmetic operations were uncovered, including a number of the range checking operations designed to ensure the offsets specified in TIFF directories are legitimate.

CVE-2006-3465

A flaw was also uncovered in libtiffs custom tag support which may result in abnormal behaviour, crashes, or potentially arbitrary code execution.

For the stable distribution (sarge) these problems have been fixed in version 3.7.2-7.

For the unstable distribution (sid) these problems have been fixed in version 3.8.2-6.

We recommend that you upgrade your libtiff packages.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/t/tiff/tiff_3.7.2-7.dsc
      Size/MD5 checksum: 736 ce0ffb8cdd1130153deaefa8b59abe81
    http://security.debian.org/pool/updates/main/t/tiff/tiff_3.7.2-7.diff.gz
      Size/MD5 checksum: 17174 ff485016221ededfc8ce649538322211
    http://security.debian.org/pool/updates/main/t/tiff/tiff_3.7.2.orig.tar.gz
      Size/MD5 checksum: 1252995 221679f6d5c15670b3c242cbfff79a00

Alpha architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_alpha.deb
      Size/MD5 checksum: 47112 a4f7feea087ba03a84f745ee79a7ff56
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_alpha.deb
      Size/MD5 checksum: 243840 f7abb618f36082be959f6e3c9a99cf8f
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_alpha.deb
      Size/MD5 checksum: 479064 c137c6857ed320928f182115fbd94b21
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_alpha.deb
      Size/MD5 checksum: 311206 c202ef6404c23ea7dc999c03e586c07f
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_alpha.deb
      Size/MD5 checksum: 41228 53c5979e8c2556e5a19607c19e862368

AMD64 architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_amd64.deb
      Size/MD5 checksum: 46036 bc6d0c7db57a1dcae4b8dd65b4640243
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_amd64.deb
      Size/MD5 checksum: 218060 d09ef1de8b31f074d2f05c7522858cf1
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_amd64.deb
      Size/MD5 checksum: 459964 8be097d74ac788d87a8358b8f9e68d79
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_amd64.deb
      Size/MD5 checksum: 267872 cc0a4241cd53de29b561286fcd91cf2c
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_amd64.deb
      Size/MD5 checksum: 40804 136bc49ad0c85dc6fa9f61242cf97c05

ARM architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_arm.deb
      Size/MD5 checksum: 45536 0253b94c6f94a33c9942568f9093fedd
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_arm.deb
      Size/MD5 checksum: 208630 45e2ef6af43bfbddb4aee00b659d287a
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_arm.deb
      Size/MD5 checksum: 454194 354e1b4560b4a407c4b4faf5d2555b20
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_arm.deb
      Size/MD5 checksum: 266148 f535b441d81a7786815d954c843b9c81
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_arm.deb
      Size/MD5 checksum: 40304 fcd0980c8fc2dedaa8a6380e0d4736bd

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_i386.deb
      Size/MD5 checksum: 45400 e51d8f157a2ef94cbc4e893f756be29a
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_i386.deb
      Size/MD5 checksum: 206412 69a3c66b2c9733653e6e7f667ab260b3
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_i386.deb
      Size/MD5 checksum: 453078 267f8f361f0dc87f40c8bc37d4785f57
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_i386.deb
      Size/MD5 checksum: 252412 5720af1515d6c9ce04f0e7abea045955
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_i386.deb
      Size/MD5 checksum: 40850 18710ba8ae073bd5a6e7b3c299cbae23

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_ia64.deb
      Size/MD5 checksum: 48512 c57280d747f62859c4477a0f1dcbcfef
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_ia64.deb
      Size/MD5 checksum: 269156 277ad4a79cd2148991134c6ed8c029fe
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_ia64.deb
      Size/MD5 checksum: 511782 4b64fd28c917e7e2e158c7244cfc892d
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_ia64.deb
      Size/MD5 checksum: 331790 614a46318d671800caab21e26df9c1bf
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_ia64.deb
      Size/MD5 checksum: 42450 af80a3234e174d9f15bbb4e68d2b558f

HP Precision architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_hppa.deb
      Size/MD5 checksum: 46846 e863b11db8f25a221776ea306eeb1539
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_hppa.deb
      Size/MD5 checksum: 230316 9ccb777cf49096a2dabf144de609b83c
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_hppa.deb
      Size/MD5 checksum: 473764 6938692095c40fba1f5feca1efd243a8
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_hppa.deb
      Size/MD5 checksum: 282648 68ffb8ebaac2404aa1f9a709e83abfc6
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_hppa.deb
      Size/MD5 checksum: 41476 4327a6e2887ab7d5bb69d0476186d69e

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_m68k.deb
      Size/MD5 checksum: 45408 e33d428b54a5776181803c28475e2a30
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_m68k.deb
      Size/MD5 checksum: 193578 d7f3db57205002a50354df9cc1e74767
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_m68k.deb
      Size/MD5 checksum: 443280 2e982f2b17745777ff6e249f627b1b4c
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_m68k.deb
      Size/MD5 checksum: 235056 c362aaa8589f44a3dc533143c37fd16b
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_m68k.deb
      Size/MD5 checksum: 40450 279a59887fd7a90b9d92415a07fe87f1

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_mips.deb
      Size/MD5 checksum: 46300 c26b165f7098aa083170b90c8002406e
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_mips.deb
      Size/MD5 checksum: 252404 77b6d4382ee49bab1d3b94ea69d3bd88
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_mips.deb
      Size/MD5 checksum: 459088 34e8d02f8bac8bc4b059bc36109dda66
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_mips.deb
      Size/MD5 checksum: 281156 c2bf726c93de2c1ce1cb289d65fec892
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_mips.deb
      Size/MD5 checksum: 41086 85b8389df1df050f12fd87488ab46c02

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_mipsel.deb
      Size/MD5 checksum: 46256 8a1cc8fbd9e7679f2ec722f46a300fe1
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_mipsel.deb
      Size/MD5 checksum: 252820 876a24a6b4b49d19eb2d425f7271528e
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_mipsel.deb
      Size/MD5 checksum: 459392 f1d09bb13a31f8ec73922f50d538b073
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_mipsel.deb
      Size/MD5 checksum: 280986 eff50ab58f511148d9d56ecbbc02c162
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_mipsel.deb
      Size/MD5 checksum: 41066 7490a101b2de00f6f458359f64b05daa

PowerPC architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_powerpc.deb
      Size/MD5 checksum: 47462 3eaaac85e15b48dd1add1fb314de9b74
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_powerpc.deb
      Size/MD5 checksum: 235624 2d13e7c1769aab6d8a051817009d10ca
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_powerpc.deb
      Size/MD5 checksum: 461300 94dddf225b2130da2daca1ec54b2c0b0
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_powerpc.deb
      Size/MD5 checksum: 272868 0517f72923504549f4acf0fab1e1924f
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_powerpc.deb
      Size/MD5 checksum: 42658 9dd0f68f37713263bc9a729d7216b35f

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_s390.deb
      Size/MD5 checksum: 46422 039bfe0dde0063b276a57c1414a6d9ca
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_s390.deb
      Size/MD5 checksum: 214056 b87d71aa653f45726d3b4ecd60b226b3
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_s390.deb
      Size/MD5 checksum: 466474 6b6e2dd8152760e65d2af459deac62fc
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_s390.deb
      Size/MD5 checksum: 267648 fc8d5662348991874f47953f20102b38
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_s390.deb
      Size/MD5 checksum: 41078 090b4edea314fadf183bb31fd891be34

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.7.2-7_sparc.deb
      Size/MD5 checksum: 45706 955588f87bf3796b962c6f18ad5ecbb3
    http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.7.2-7_sparc.deb
      Size/MD5 checksum: 205502 710eb39e993e988dcc1abc5cefd2f559
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.7.2-7_sparc.deb
      Size/MD5 checksum: 455492 76e4acd2000175c52d60f6b6f53aaa25
    http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.7.2-7_sparc.deb
      Size/MD5 checksum: 258764 c33aacda7a8162ff5ba7fd9399e347a6
    http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0_3.7.2-7_sparc.deb
      Size/MD5 checksum: 40806 cefaef4ab3ed03fdeeec97a40081721f

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 1138-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
August 2nd, 2006 http://www.debian.org/security/faq

Package : cfs
Vulnerability : integer overflow
Problem-Type : local
Debian-specific: no
CVE ID : CVE-2006-3123
Debian Bug : 371076

Carlo Contavalli discovered an integer overflow in CFS, a cryptographic filesystem, which allows local users to crash the encryption daemon.

For the stable distribution (sarge) this problem has been fixed in version 1.4.1-15sarge1.

For the unstable distribution (sid) this problem has been fixed in version 1.4.1-17.

We recommend that you upgrade your cfs package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1.dsc
      Size/MD5 checksum: 520 460ec2da0664857b55354a40aaf71961
    http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1.diff.gz
      Size/MD5 checksum: 18505 c9d5f2c91ee97c8c5b694da6806c0d24
    http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1.orig.tar.gz
      Size/MD5 checksum: 98376 3ce2e01211dafe7bfb44849894926eda

Alpha architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_alpha.deb
Size/MD5 checksum: 276728 d9833bbbc249822a5f5be41e00a0fb94

AMD64 architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_amd64.deb
Size/MD5 checksum: 206744 a4bdfb7c09afb0bda9cefbb87fd75452

ARM architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_arm.deb
Size/MD5 checksum: 211684 32f93d266c5985808660ed2f00730c41

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_i386.deb
Size/MD5 checksum: 185708 e1fdcfb68fe51980f0540da732881b95

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_ia64.deb
Size/MD5 checksum: 277636 f0e4fbd440bb5d4659bc204baa7befcb

HP Precision architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_hppa.deb
Size/MD5 checksum: 225214 ba08b5b205afa8c52bfdb4d5798e3620

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_m68k.deb
Size/MD5 checksum: 172456 1fd539cea16d172d2fc5a39574d703fd

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_mips.deb
Size/MD5 checksum: 221410 a4c2daf1ccd1d711c62a5fbb01550f72

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_mipsel.deb
Size/MD5 checksum: 221798 e905c5b13d8b300830ed3756907e989e

PowerPC architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_powerpc.deb
Size/MD5 checksum: 211088 bb0ff12922878cb500579eb0a517f24b

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_s390.deb
Size/MD5 checksum: 202360 37c5b60eea01e569e0024dd89a466a4c

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/c/cfs/cfs_1.4.1-15sarge1_sparc.deb
Size/MD5 checksum: 202290 4a1753f9fdc695551b77829b383615f5

These files will probably be moved into the stable distribution on its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

Red Hat Linux

Red Hat Security Advisory

Synopsis: Important: libtiff security update
Advisory ID: RHSA-2006:0603-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0603.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-3459 CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465

1. Summary:

Updated libtiff packages that fix several security flaws are now available for Red Hat Enterprise Linux.

This update has been rated as having important security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) files.

Tavis Ormandy of Google discovered a number of flaws in libtiff during a security audit. An attacker could create a carefully crafted TIFF file in such a way that it was possible to cause an application linked with libtiff to crash or possibly execute arbitrary code. (CVE-2006-3459, CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463, CVE-2006-3464, CVE-2006-3465)

All users are advised to upgrade to these updated packages, which contain backported fixes for these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

199111 - CVE-2006-3459 Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm

i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm

ia64:
89aee29ffeb8f01f46d075d95d9c037f libtiff-3.5.7-30.el2.4.ia64.rpm
7cb1055972485ec20f3f22fd692e4470 libtiff-devel-3.5.7-30.el2.4.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm

ia64:
89aee29ffeb8f01f46d075d95d9c037f libtiff-3.5.7-30.el2.4.ia64.rpm
7cb1055972485ec20f3f22fd692e4470 libtiff-devel-3.5.7-30.el2.4.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm

i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm

i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm

i386:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
2471e687beeb7038052d51a1c4e40f87 libtiff-devel-3.5.7-25.el3.4.i386.rpm

ia64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
02ddd1a83bb2f0a8691b96760e6ba4b5 libtiff-3.5.7-25.el3.4.ia64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
6316332164384ac52fcb4384d5bb0e8a libtiff-debuginfo-3.5.7-25.el3.4.ia64.rpm
d45b2607d761ce1cbe208b9651bf9998 libtiff-devel-3.5.7-25.el3.4.ia64.rpm

ppc:
752ea524221856fc14ecac4000a8f62d libtiff-3.5.7-25.el3.4.ppc.rpm
e70c6cd29c3953bf9edaad4ec1d36efe libtiff-3.5.7-25.el3.4.ppc64.rpm
c23ceb19e3acefc1d5594d85bddcaddc libtiff-debuginfo-3.5.7-25.el3.4.ppc.rpm
d36110c5f1b0fe63cbfd580aae5e4ed9 libtiff-debuginfo-3.5.7-25.el3.4.ppc64.rpm
81d42bbe59c35d4e5b1585d68f5e8dfa libtiff-devel-3.5.7-25.el3.4.ppc.rpm

s390:
1a4543a796c634a68672ecfb77bc3dc0 libtiff-3.5.7-25.el3.4.s390.rpm
85cb88727f6fd57b9b4884cf8a84bab6 libtiff-debuginfo-3.5.7-25.el3.4.s390.rpm
d8dae409df03c8fad402aa8da201c4ca libtiff-devel-3.5.7-25.el3.4.s390.rpm

s390x:
1a4543a796c634a68672ecfb77bc3dc0 libtiff-3.5.7-25.el3.4.s390.rpm
72051ad4342379c027c1ea1b4278d6cd libtiff-3.5.7-25.el3.4.s390x.rpm
85cb88727f6fd57b9b4884cf8a84bab6 libtiff-debuginfo-3.5.7-25.el3.4.s390.rpm
af79ccfb5adf54e27b2616095f8fe001 libtiff-debuginfo-3.5.7-25.el3.4.s390x.rpm
2dfd8da8d4e8c4cbb4d806f0400f287f libtiff-devel-3.5.7-25.el3.4.s390x.rpm

x86_64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
a6018c9e9da37e13838a5b8e87293456 libtiff-3.5.7-25.el3.4.x86_64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
9ad3dd5a544d31f1f80c48ed0d4ab033 libtiff-debuginfo-3.5.7-25.el3.4.x86_64.rpm
b5faaf4d4d2d58c065153b67d6bf5d03 libtiff-devel-3.5.7-25.el3.4.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm

i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm

ia64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
083162bc4c811ba7d60dcbeb76497723 libtiff-3.6.1-12.ia64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
a66fa24c0cf4a93f61f71283f7a4c436 libtiff-debuginfo-3.6.1-12.ia64.rpm
17c3f9699fa0862fb2dbc0af01d87d0c libtiff-devel-3.6.1-12.ia64.rpm

ppc:
34f50710c254ddb30bfcf93cdb940af5 libtiff-3.6.1-12.ppc.rpm
bed1101c785a09bc59edff1fdaeabd7c libtiff-3.6.1-12.ppc64.rpm
7c70a88957c1f8587cdae2b200145708 libtiff-debuginfo-3.6.1-12.ppc.rpm
04ecd0dc7f60186444aebcc7b8c130b5 libtiff-debuginfo-3.6.1-12.ppc64.rpm
6eff7700a2e61c6c3dd015e904973880 libtiff-devel-3.6.1-12.ppc.rpm

s390:
d40c639eeb99b95d40510edd4a0f241c libtiff-3.6.1-12.s390.rpm
9b6d4acbeb7673ed5b1fb637720b1e7d libtiff-debuginfo-3.6.1-12.s390.rpm
dd7c9c20d518a596b9ac1495660e5047 libtiff-devel-3.6.1-12.s390.rpm

s390x:
d40c639eeb99b95d40510edd4a0f241c libtiff-3.6.1-12.s390.rpm
94edaeb3446a3652564e66fd7fc4c1cb libtiff-3.6.1-12.s390x.rpm
9b6d4acbeb7673ed5b1fb637720b1e7d libtiff-debuginfo-3.6.1-12.s390.rpm
be21c80053945f36324b412943650e7e libtiff-debuginfo-3.6.1-12.s390x.rpm
776099b77a423d1de778da634aef219f libtiff-devel-3.6.1-12.s390x.rpm

x86_64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
4478b8733a33ff74d0c778a708a7402c libtiff-3.6.1-12.x86_64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
8e12c14d3de0e9872a4501d3b32751c7 libtiff-debuginfo-3.6.1-12.x86_64.rpm
3979f1422ee25b898976b32088aafb6c libtiff-devel-3.6.1-12.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm

i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm

i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm

i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3460
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3461
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3462
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3463
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3464
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3465
http://www.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Red Hat Security Advisory

Synopsis: Critical: seamonkey security update
Advisory ID: RHSA-2006:0609-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0609.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-2779 CVE-2006-2780 CVE-2006-2781 CVE-2006-2783 CVE-2006-2782 CVE-2006-2778 CVE-2006-2776 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787 CVE-2006-2788 CVE-2006-3801 CVE-2006-3677 CVE-2006-3113 CVE-2006-3802 CVE-2006-3803 CVE-2006-3804 CVE-2006-3805 CVE-2006-3806 CVE-2006-3807 CVE-2006-3808 CVE-2006-3809 CVE-2006-3810 CVE-2006-3811 CVE-2006-3812

1. Summary:

Updated seamonkey packages that fix several security bugs in the mozilla package are now available for Red Hat Enterprise Linux 4.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

Seamonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.

The Mozilla Foundation has discontinued support for the Mozilla Suite. This update deprecates the Mozilla Suite in Red Hat Enterprise Linux 4 in favor of the supported Seamonkey Suite.

This update also resolves a number of outstanding Mozilla security issues:

Several flaws were found in the way Seamonkey processed certain javascript actions. A malicious web page could execute arbitrary javascript instructions with the permissions of "chrome", allowing the page to steal sensitive information or install browser malware. (CVE-2006-2776, CVE-2006-2784, CVE-2006-2785, CVE-2006-2787, CVE-2006-3807, CVE-2006-3809, CVE-2006-3812)

Several denial of service flaws were found in the way Seamonkey processed certain web content. A malicious web page could crash the browser or possibly execute arbitrary code as the user running Seamonkey. (CVE-2006-2779, CVE-2006-2780, CVE-2006-3801, CVE-2006-3677, CVE-2006-3113, CVE-2006-3803, CVE-2006-3805, CVE-2006-3806, CVE-2006-3811)

Two flaws were found in the way Seamonkey-mail displayed malformed inline vcard attachments. If a victim viewed an email message containing a carefully crafted vcard it was possible to execute arbitrary code as the user running Mozilla-mail. (CVE-2006-2781, CVE-2006-3804)

A cross-site scripting flaw was found in the way Seamonkey processed Unicode Byte-Order-Mark (BOM) markers in UTF-8 web pages. A malicious web page could execute a script within the browser that a web input sanitizer could miss due to a malformed "script" tag. (CVE-2006-2783)

Several flaws were found in the way Seamonkey processed certain javascript actions. A malicious web page could conduct a cross-site scripting attack or steal sensitive information (such as cookies owned by other domains). (CVE-2006-3802, CVE-2006-3810)

A form file upload flaw was found in the way Seamonkey handled javascript input object mutation. A malicious web page could upload an arbitrary local file at form submission time without user interaction. (CVE-2006-2782)

A denial of service flaw was found in the way Seamonkey called the crypto.signText() javascript function. A malicious web page could crash the browser if the victim had a client certificate loaded. (CVE-2006-2778)

Two HTTP response smuggling flaws were found in the way Seamonkey processed certain invalid HTTP response headers. A malicious web site could return specially crafted HTTP response headers which may bypass HTTP proxy restrictions. (CVE-2006-2786)

A flaw was found in the way Seamonkey processed Proxy AutoConfig scripts. A malicious Proxy AutoConfig server could execute arbitrary javascript instructions with the permissions of "chrome", allowing the page to steal sensitive information or install browser malware. (CVE-2006-3808)

A double free flaw was found in the way the nsIX509::getRawDER method was called. If a victim visited a carefully crafted web page, it was possible to execute arbitrary code as the user running Mozilla. (CVE-2006-2788)

Users of Mozilla are advised to upgrade to this update, which contains Seamonkey version 1.0.3 that corrects these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

Multilib systems may experience difficulty if trying to specify the package by name to the Update Agent via a command line argument. This can be solved by executing the following commands:

up2date seamonkey; up2date seamonkey-nss seamonkey-nspr

5. Bug IDs fixed (http://bugzilla.redhat.com/):

193906 - CVE-2006-2779 Multiple Mozilla issues (CVE-2006-2780, CVE-2006-2781)
196969 - CVE-2006-2783 multiple Seamonkey issues (CVE-2006-2782,CVE-2006-2778,CVE-2006-2776,CVE-2006-2784,CVE-2006-2785,CVE-2006-2786,CVE-2006-2787,CVE-2006-2788)
200161 - CVE-2006-3801 Multiple Seamonkey issues (CVE-2006-3677, CVE-2006-3113, CVE-2006-3802, CVE-2006-3803, CVE-2006-3804, CVE-2006-3805, CVE-2006-3806, CVE-2006-3807, CVE-2006-3808, CVE-2006-3809, CVE-2006-3810, CVE-2006-3811, CVE-2006-3812)

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Red Hat Security Advisory

Synopsis: Moderate: gnupg security update
Advisory ID: RHSA-2006:0615-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0615.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-3746

1. Summary:

Updated GnuPG packages that fix a security issue is now available.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

3. Problem description:

GnuPG is a utility for encrypting data and creating digital signatures.

An integer overflow flaw was found in GnuPG. An attacker could create a carefully crafted message packet with a large length that could cause GnuPG to crash or possibly overwrite memory when opened. (CVE-2006-3746)

All users of GnuPG are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

200502 - CVE-2006-3746 GnuPG Parse_Comment Remote Buffer Overflow

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm

i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm

ia64:
0eae4ff0de57c02ed733997444eaf7bc gnupg-1.0.7-18.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm

ia64:
0eae4ff0de57c02ed733997444eaf7bc gnupg-1.0.7-18.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm

i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm

i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm

i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm

ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm

ppc:
ce9d270a17b85a449bd6edc71ca6e10b gnupg-1.2.1-17.ppc.rpm
c4913dbb57e4c66d788420f3cb0a0382 gnupg-debuginfo-1.2.1-17.ppc.rpm

s390:
580852ff5bbef0d3a7c24abca0e3610c gnupg-1.2.1-17.s390.rpm
7583e08411dc1ab071a011a131331250 gnupg-debuginfo-1.2.1-17.s390.rpm

s390x:
e9d583a9471b453ce627e84dca5a9ccc gnupg-1.2.1-17.s390x.rpm
1a976fb4dc5cb4f5a5fee40e4e258b0a gnupg-debuginfo-1.2.1-17.s390x.rpm

x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm

i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm

x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm

i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm

ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm

x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm

i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm

ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm

x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm

i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm

ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm

ppc:
8aa392d26563d4b4654e7a379503614a gnupg-1.2.6-6.ppc.rpm
49a168e70b1207bcf611cb78fb652709 gnupg-debuginfo-1.2.6-6.ppc.rpm

s390:
db61ab7f02568b32b6cc898f09f02276 gnupg-1.2.6-6.s390.rpm
5955670bfc5e3c30d6f4fb66ea230430 gnupg-debuginfo-1.2.6-6.s390.rpm

s390x:
cc2f486af4a032b4aa8663f2b66f5dcd gnupg-1.2.6-6.s390x.rpm
a1c0388758e97ba28a24e885acb9e498 gnupg-debuginfo-1.2.6-6.s390x.rpm

x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm

i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm

x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm

i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm

ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm

x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm

i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm

ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm

x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3746
http://www.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Ubuntu Linux

Ubuntu Security Notice USN-330-1 August 02, 2006
tiff vulnerabilities
CVE-2006-3459, CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463, CVE-2006-3464, CVE-2006-3465

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 5.04:
libtiff4 3.6.1-5ubuntu0.6

Ubuntu 5.10:
libtiff4 3.7.3-1ubuntu1.5

Ubuntu 6.06 LTS:
libtiff4 3.7.4-1ubuntu3.2

After a standard system upgrade you need to reboot your computer to effect the necessary changes.

Details follow:

Tavis Ormandy discovered that the TIFF library did not sufficiently check handled images for validity. By tricking an user or an automated system into processing a specially crafted TIFF image, an attacker could exploit these weaknesses to execute arbitrary code with the target application's privileges.

This library is used in many client and server applications, thus you should reboot your computer after the upgrade to ensure that all running programs use the new version of the library.

Updated packages for Ubuntu 5.04:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.6.1-5ubuntu0.6.diff.gz
      Size/MD5: 30691 49722c5266cd7abd26af4e2930806b9c
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.6.1-5ubuntu0.6.dsc
      Size/MD5: 681 7ad4b09fd3ae17ac3469befee5a0bdbe
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.6.1.orig.tar.gz
      Size/MD5: 848760 bd252167a20ac7910ab3bd2b3ee9e955

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.6.1-5ubuntu0.6_amd64.deb
      Size/MD5: 172866 61bd186e530802e933781ec95ecc75a9
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.6.1-5ubuntu0.6_amd64.deb
      Size/MD5: 459690 585475d89d429435077cf76a1ea26137
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.6.1-5ubuntu0.6_amd64.deb
      Size/MD5: 113776 4780d38316de3537a1b55ba45f2fe735

i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.6.1-5ubuntu0.6_i386.deb
      Size/MD5: 155968 389e7151c6cea9cee5c4a5f95a13b77d
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.6.1-5ubuntu0.6_i386.deb
      Size/MD5: 441462 cb6274340b13def24594a42a90b68251
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.6.1-5ubuntu0.6_i386.deb
      Size/MD5: 104694 16b136cb563918fd5cbea35772af378a

powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.6.1-5ubuntu0.6_powerpc.deb
      Size/MD5: 188188 6749e48524a1dae0a6ff5d7e3a2de413
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.6.1-5ubuntu0.6_powerpc.deb
      Size/MD5: 464676 6074afb200b1b839eb612e195a9cdfa7
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.6.1-5ubuntu0.6_powerpc.deb
      Size/MD5: 115188 956c9014eb02b96505808da786ad5a76

Updated packages for Ubuntu 5.10:

Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.3-1ubuntu1.5.diff.gz
      Size/MD5: 17432 462f974440018758467c211ae4287a38
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.3-1ubuntu1.5.dsc
      Size/MD5: 756 588e4e00764c879078155ea33e75ff09
    http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.3.orig.tar.gz
      Size/MD5: 1268182 48fbef3d76a6253699f28f49c8f25a8b