Debian 9844 Published by

A tiff security update has been released for Debian



Package : tiff
Version : 4.0.2-6+deb7u12
CVE ID : CVE-2017-7592 CVE-2017-7593 CVE-2017-7594
CVE-2017-7595 CVE-2017-7596 CVE-2017-7597
CVE-2017-7598 CVE-2017-7599 CVE-2017-7600
CVE-2017-7601 CVE-2017-7602
Debian Bug : 859998 860000 860001 860003

Multiple security issues have been found in the tiff image library
that may allow remote attackers to cause a denial of service
(application crash), to obtain sensitive information from process
memory or possibly have unspecified other impact via a crafted image

For Debian 7 "Wheezy", these problems have been fixed in version
4.0.2-6+deb7u12.

We recommend that you upgrade your tiff packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
  Tiff security update for Debian