Skip to navigation

Security Advisory Important: libtiff security update

Advisory: RHSA-2010:0519-1
Type: Security Advisory
Severity: Important
Issued on: 2010-07-08
Last updated on: 2010-07-08
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2010-1411
CVE-2010-2481
CVE-2010-2483
CVE-2010-2595
CVE-2010-2597
CVE-2010-4665

Details

Updated libtiff packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

The libtiff packages contain a library of functions for manipulating Tagged
Image File Format (TIFF) files.

Multiple integer overflow flaws, leading to a buffer overflow, were
discovered in libtiff. An attacker could use these flaws to create a
specially-crafted TIFF file that, when opened, would cause an application
linked against libtiff to crash or, possibly, execute arbitrary code.
(CVE-2010-1411)

Multiple input validation flaws were discovered in libtiff. An attacker
could use these flaws to create a specially-crafted TIFF file that, when
opened, would cause an application linked against libtiff to crash.
(CVE-2010-2481, CVE-2010-2483, CVE-2010-2595, CVE-2010-2597)

Red Hat would like to thank Apple Product Security for responsibly
reporting the CVE-2010-1411 flaw, who credit Kevin Finisterre of
digitalmunition.com for the discovery of the issue.

All libtiff users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. All running
applications linked against libtiff must be restarted for this update to
take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
libtiff-3.8.2-7.el5_5.5.src.rpm
File outdated by:  RHSA-2014:0223
    MD5: e9e5f8824ec47f5b65eba57c7c7e9905
SHA-256: aa5e4f59c3365820a25ad9d007310942a0b87d96307bd3a75b6a6296196bfa4d
 
IA-32:
libtiff-devel-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 95e1e2cb3b6ccf1068f959ceba7f7b8a
SHA-256: 76c86adee52046ff371c070b1e6775d8a67e746783184b91b84b150823228adc
 
x86_64:
libtiff-devel-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 95e1e2cb3b6ccf1068f959ceba7f7b8a
SHA-256: 76c86adee52046ff371c070b1e6775d8a67e746783184b91b84b150823228adc
libtiff-devel-3.8.2-7.el5_5.5.x86_64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 7bf4a41e9cb3366c3fc69e14a44de12d
SHA-256: 04f18010b7dcb3c04367755ac86c5017f6936f00405b1e5302c2414dd89a50f9
 
Red Hat Desktop (v. 4)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
libtiff-3.8.2-7.el5_5.5.src.rpm
File outdated by:  RHSA-2014:0223
    MD5: e9e5f8824ec47f5b65eba57c7c7e9905
SHA-256: aa5e4f59c3365820a25ad9d007310942a0b87d96307bd3a75b6a6296196bfa4d
 
IA-32:
libtiff-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8587bb222b7c7bfcaac225fb3adb137d
SHA-256: fc50547dc49dd2f3dae651ac8961fc3d9fa15e97b6a6876be4a41b739c1a3bf2
libtiff-devel-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 95e1e2cb3b6ccf1068f959ceba7f7b8a
SHA-256: 76c86adee52046ff371c070b1e6775d8a67e746783184b91b84b150823228adc
 
IA-64:
libtiff-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8587bb222b7c7bfcaac225fb3adb137d
SHA-256: fc50547dc49dd2f3dae651ac8961fc3d9fa15e97b6a6876be4a41b739c1a3bf2
libtiff-3.8.2-7.el5_5.5.ia64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 640121a9fe78a4aab408fc4cecc69ec9
SHA-256: 71dec2b757499e99a5b1d26af232f6ca57b299389dade9d6acbb7bbb6e82cb39
libtiff-devel-3.8.2-7.el5_5.5.ia64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 7a87b668c19cd579388a79256adaaf34
SHA-256: 108766b2d462051914e36af2ecd0ed23e70fbee930929d2d93714004f0ef8cfc
 
PPC:
libtiff-3.8.2-7.el5_5.5.ppc.rpm
File outdated by:  RHSA-2014:0223
    MD5: f4a2d359dcc59d4c3509926a5acf5da4
SHA-256: dfd8069cb91004d186152412a9d2038fcf3b826803162c4abd7ae3b3123afb33
libtiff-3.8.2-7.el5_5.5.ppc64.rpm
File outdated by:  RHSA-2014:0223
    MD5: d14350388b57a5d528a4a3173b6283eb
SHA-256: 3f216ae3a94b87674216f85d29f363becfc794ce925130c9b6b3c53222c126fc
libtiff-devel-3.8.2-7.el5_5.5.ppc.rpm
File outdated by:  RHSA-2014:0223
    MD5: 5f8e32e88fa9af912cebb6f9e8902065
SHA-256: e64cf98c556e09bf8bf3546050d74dc5069f14accea71c03155377f74f603137
libtiff-devel-3.8.2-7.el5_5.5.ppc64.rpm
File outdated by:  RHSA-2014:0223
    MD5: b2fda31920f6e19c7789a98224e39f4e
SHA-256: b2b95e8ec70655a14ff91723e17871e2bf2ba84b63c4c4d34df61e8b839db7b2
 
s390x:
libtiff-3.8.2-7.el5_5.5.s390.rpm
File outdated by:  RHSA-2014:0223
    MD5: 19940dbefe4dfdc0016ba2202ddb3ded
SHA-256: 89852584e3ee1a549d5cf99eb929560fcacce0ecf0c0954dd132a20511047b9e
libtiff-3.8.2-7.el5_5.5.s390x.rpm
File outdated by:  RHSA-2014:0223
    MD5: 68152701468791c7efde9864e9ed41fd
SHA-256: dfa8a505a59659dd2fa779f3bb689db46acbcfa9ae2da49144c0a74a63d15582
libtiff-devel-3.8.2-7.el5_5.5.s390.rpm
File outdated by:  RHSA-2014:0223
    MD5: e29a074d364b1591928f8315e4d01e45
SHA-256: 4f80e28fec9624cb2b41bfce36fe990a216d3e627bfca62f2bea5f21aee68f65
libtiff-devel-3.8.2-7.el5_5.5.s390x.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8a403ab01e702dfebef94f98048cfae8
SHA-256: b135bcc9b8b418dc8eb5efe11cb45d527bb07596c55e4c2f4d325881c93f0335
 
x86_64:
libtiff-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8587bb222b7c7bfcaac225fb3adb137d
SHA-256: fc50547dc49dd2f3dae651ac8961fc3d9fa15e97b6a6876be4a41b739c1a3bf2
libtiff-3.8.2-7.el5_5.5.x86_64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 5e65f290714389926e98c625795c8aee
SHA-256: ca81f55d4a12a458d762d0a53e7b27b4c6c140539dc550db1b4825979221f75b
libtiff-devel-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 95e1e2cb3b6ccf1068f959ceba7f7b8a
SHA-256: 76c86adee52046ff371c070b1e6775d8a67e746783184b91b84b150823228adc
libtiff-devel-3.8.2-7.el5_5.5.x86_64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 7bf4a41e9cb3366c3fc69e14a44de12d
SHA-256: 04f18010b7dcb3c04367755ac86c5017f6936f00405b1e5302c2414dd89a50f9
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
IA-64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 6a18e2bdf1c0dbbeaa0da1ded114003c
SHA-256: 0be12047885641aa8e4a805ad074195fc1949c41c9ef1165c62bcd45c0f559ca
libtiff-devel-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 645ca31e6fc7c7523520d5a317548276
SHA-256: 93a4073441edc531a22358f6bac7dc63cb8710b0edf07273c310288cff27bd19
 
PPC:
libtiff-3.6.1-12.el4_8.5.ppc.rpm
File outdated by:  RHSA-2011:0392
    MD5: c31679c60e01db41dfaa0450762d8375
SHA-256: 49082c1887cb326a4b88bf80608549c0c8ab8528005137f5ec7bd8dd49cf3ba2
libtiff-3.6.1-12.el4_8.5.ppc64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 95db3785867431c5690f193141e96c0e
SHA-256: 28f81352428f252427c09e26efec2f18c848630801bcc149f4e7e5fd85496772
libtiff-devel-3.6.1-12.el4_8.5.ppc.rpm
File outdated by:  RHSA-2011:0392
    MD5: 1d4546f52e5dde9597d4c3d254823088
SHA-256: 04aaae2fc00bd98ad1ff6fd29cc8a66a3b78af11234c4ea6536dfdb725aeefea
 
s390:
libtiff-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: d199db2579cd0402988a582f348ba71e
SHA-256: 94f3587d69de4e3396cbf4676284b0c1f7d91520d94d70f7de30d5a25c249c81
libtiff-devel-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: 1d87a7017972a9db660a458d58ec55ae
SHA-256: 0f8a6700aca8d43c9f35126e630f906007757829381de6e6af2b6f351ef8ae3d
 
s390x:
libtiff-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: d199db2579cd0402988a582f348ba71e
SHA-256: 94f3587d69de4e3396cbf4676284b0c1f7d91520d94d70f7de30d5a25c249c81
libtiff-3.6.1-12.el4_8.5.s390x.rpm
File outdated by:  RHSA-2011:0392
    MD5: 2d73be3f2d19399c500ef39514e640e1
SHA-256: 29233cee32f62b66f486342fb3bf285ce8da951129cdc81d3f3ae96ea2e937a1
libtiff-devel-3.6.1-12.el4_8.5.s390x.rpm
File outdated by:  RHSA-2011:0392
    MD5: bed288034351dd20db08417e2ac26fec
SHA-256: fff0e0dfc57ea1929da4e74299a0133b5411edac625aa5dea1297ccb64c8cf4e
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
Red Hat Enterprise Linux AS (v. 4.8.z)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
IA-64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 6a18e2bdf1c0dbbeaa0da1ded114003c
SHA-256: 0be12047885641aa8e4a805ad074195fc1949c41c9ef1165c62bcd45c0f559ca
libtiff-devel-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 645ca31e6fc7c7523520d5a317548276
SHA-256: 93a4073441edc531a22358f6bac7dc63cb8710b0edf07273c310288cff27bd19
 
PPC:
libtiff-3.6.1-12.el4_8.5.ppc.rpm
File outdated by:  RHSA-2011:0392
    MD5: c31679c60e01db41dfaa0450762d8375
SHA-256: 49082c1887cb326a4b88bf80608549c0c8ab8528005137f5ec7bd8dd49cf3ba2
libtiff-3.6.1-12.el4_8.5.ppc64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 95db3785867431c5690f193141e96c0e
SHA-256: 28f81352428f252427c09e26efec2f18c848630801bcc149f4e7e5fd85496772
libtiff-devel-3.6.1-12.el4_8.5.ppc.rpm
File outdated by:  RHSA-2011:0392
    MD5: 1d4546f52e5dde9597d4c3d254823088
SHA-256: 04aaae2fc00bd98ad1ff6fd29cc8a66a3b78af11234c4ea6536dfdb725aeefea
 
s390:
libtiff-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: d199db2579cd0402988a582f348ba71e
SHA-256: 94f3587d69de4e3396cbf4676284b0c1f7d91520d94d70f7de30d5a25c249c81
libtiff-devel-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: 1d87a7017972a9db660a458d58ec55ae
SHA-256: 0f8a6700aca8d43c9f35126e630f906007757829381de6e6af2b6f351ef8ae3d
 
s390x:
libtiff-3.6.1-12.el4_8.5.s390.rpm
File outdated by:  RHSA-2011:0392
    MD5: d199db2579cd0402988a582f348ba71e
SHA-256: 94f3587d69de4e3396cbf4676284b0c1f7d91520d94d70f7de30d5a25c249c81
libtiff-3.6.1-12.el4_8.5.s390x.rpm
File outdated by:  RHSA-2011:0392
    MD5: 2d73be3f2d19399c500ef39514e640e1
SHA-256: 29233cee32f62b66f486342fb3bf285ce8da951129cdc81d3f3ae96ea2e937a1
libtiff-devel-3.6.1-12.el4_8.5.s390x.rpm
File outdated by:  RHSA-2011:0392
    MD5: bed288034351dd20db08417e2ac26fec
SHA-256: fff0e0dfc57ea1929da4e74299a0133b5411edac625aa5dea1297ccb64c8cf4e
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
libtiff-3.8.2-7.el5_5.5.src.rpm
File outdated by:  RHSA-2014:0223
    MD5: e9e5f8824ec47f5b65eba57c7c7e9905
SHA-256: aa5e4f59c3365820a25ad9d007310942a0b87d96307bd3a75b6a6296196bfa4d
 
IA-32:
libtiff-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8587bb222b7c7bfcaac225fb3adb137d
SHA-256: fc50547dc49dd2f3dae651ac8961fc3d9fa15e97b6a6876be4a41b739c1a3bf2
libtiff-devel-3.8.2-7.el5_5.5.i386.rpm     MD5: 95e1e2cb3b6ccf1068f959ceba7f7b8a
SHA-256: 76c86adee52046ff371c070b1e6775d8a67e746783184b91b84b150823228adc
 
x86_64:
libtiff-3.8.2-7.el5_5.5.i386.rpm
File outdated by:  RHSA-2014:0223
    MD5: 8587bb222b7c7bfcaac225fb3adb137d
SHA-256: fc50547dc49dd2f3dae651ac8961fc3d9fa15e97b6a6876be4a41b739c1a3bf2
libtiff-3.8.2-7.el5_5.5.x86_64.rpm
File outdated by:  RHSA-2014:0223
    MD5: 5e65f290714389926e98c625795c8aee
SHA-256: ca81f55d4a12a458d762d0a53e7b27b4c6c140539dc550db1b4825979221f75b
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
IA-64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 6a18e2bdf1c0dbbeaa0da1ded114003c
SHA-256: 0be12047885641aa8e4a805ad074195fc1949c41c9ef1165c62bcd45c0f559ca
libtiff-devel-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 645ca31e6fc7c7523520d5a317548276
SHA-256: 93a4073441edc531a22358f6bac7dc63cb8710b0edf07273c310288cff27bd19
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
Red Hat Enterprise Linux ES (v. 4.8.z)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
IA-64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 6a18e2bdf1c0dbbeaa0da1ded114003c
SHA-256: 0be12047885641aa8e4a805ad074195fc1949c41c9ef1165c62bcd45c0f559ca
libtiff-devel-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 645ca31e6fc7c7523520d5a317548276
SHA-256: 93a4073441edc531a22358f6bac7dc63cb8710b0edf07273c310288cff27bd19
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
libtiff-3.6.1-12.el4_8.5.src.rpm
File outdated by:  RHSA-2011:0392
    MD5: 3b49b8d845def3e8d7cbbaf5a359cdd6
SHA-256: 3003ead30062025d1c491ff440cf12bc7cf24995a10923e0c01b6322d8c9dcf8
 
IA-32:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-devel-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: 142cd9cdba8e59fe8f1426a515860046
SHA-256: e156d02ad52a4af47d0614476f24121d26a47c5c0898f067b711845567703fb4
 
IA-64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 6a18e2bdf1c0dbbeaa0da1ded114003c
SHA-256: 0be12047885641aa8e4a805ad074195fc1949c41c9ef1165c62bcd45c0f559ca
libtiff-devel-3.6.1-12.el4_8.5.ia64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 645ca31e6fc7c7523520d5a317548276
SHA-256: 93a4073441edc531a22358f6bac7dc63cb8710b0edf07273c310288cff27bd19
 
x86_64:
libtiff-3.6.1-12.el4_8.5.i386.rpm
File outdated by:  RHSA-2011:0392
    MD5: c2908b6efd687e040297c433eaf90723
SHA-256: 9e1e1d15da45bda88adbd8cf30955e508394d5fe8f9f90bb7374e2834ec24fcd
libtiff-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: dcf363683a9cda9dd74ca9c27503370e
SHA-256: af4e447816ba1d321e3cad82bbb5eb6325f36ef72480782d396427e6899b4602
libtiff-devel-3.6.1-12.el4_8.5.x86_64.rpm
File outdated by:  RHSA-2011:0392
    MD5: 39a6e95868e28e638f13861e52835d20
SHA-256: 62cb83ba91380e1bb2f994d57fda5a49b7b84c72b502965bc3bbb04105e4d1c6
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

592361 - CVE-2010-1411 libtiff: integer overflows leading to heap overflow in Fax3SetupState
610684 - CVE-2010-2595 libtiff: Array index error due improper handling of invalid ReferenceBlackWhite values
610776 - CVE-2010-2597 libtiff: use of uninitialized values crash
611895 - CVE-2010-2481 libtiff: TIFFExtractData out-of-bounds read crash
611900 - CVE-2010-2483 libtiff: out-of-bounds read crash on images with invalid SamplesPerPixel values


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/