ID

VAR-201103-0291

CVE

CVE-2011-0192

TITLE

plural Apple Product LIBTIFF Vulnerable to buffer overflow

DESCRIPTION

Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF Internet Fax image file that has been compressed using CCITT Group 4 encoding, related to the EXPAND2D macro in libtiff/tif_fax3.h. NOTE: some of these details are obtained from third party information. plural Apple Product LIBTIFF Is libtiff/tif_fax3.h. libTIFF is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. NOTE: This BID was previously titled 'Apple iTunes libTIFF CCITT Group 4 Encoded TIFF Image Buffer Overflow Vulnerability' but has been changed to better reflect the affected library. Note (March 30, 2011): This issue has not been patched as expected. This library contains some command line tools for working with TIFF files. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2210-2 security@debian.org http://www.debian.org/security/ Luciano Bello June 25, 2011 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : tiff Vulnerability : several Problem type : local (remote) Debian-specific: no CVE ID : CVE-2011-0191 CVE-2011-0192 CVE-2011-1167 Debian Bug : 619614 630042 The recent tiff update DSA-2210-1 introduced a regression that could lead to encoding problems of tiff files. This issue affects the Debian 5.0 Lenny package only. For the oldstable distribution (lenny), this problem has been fixed in version 3.8.2-11.5. For the stable distribution (squeeze), this problem has been fixed in version 3.9.4-5+squeeze3. For the testing distribution (wheezy), this problem has been fixed in version 3.9.5-1. For the unstable distribution (sid), this problem has been fixed in version 3.9.5-1. We recommend that you upgrade your tiff packages. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ . =========================================================== Ubuntu Security Notice USN-1085-2 March 15, 2011 tiff regression https://launchpad.net/bugs/731540 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu 9.10 Ubuntu 10.04 LTS Ubuntu 10.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libtiff4 3.7.4-1ubuntu3.10 Ubuntu 8.04 LTS: libtiff4 3.8.2-7ubuntu3.8 Ubuntu 9.10: libtiff4 3.8.2-13ubuntu0.5 Ubuntu 10.04 LTS: libtiff4 3.9.2-2ubuntu0.5 Ubuntu 10.10: libtiff4 3.9.4-2ubuntu0.2 After a standard system update you need to restart your session to make all the necessary changes. Details follow: USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sauli Pahlman discovered that the TIFF library incorrectly handled invalid td_stripbytecount fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. (CVE-2010-2482) Sauli Pahlman discovered that the TIFF library incorrectly handled TIFF files with an invalid combination of SamplesPerPixel and Photometric values. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 10.10. (CVE-2010-2482) Nicolae Ghimbovschi discovered that the TIFF library incorrectly handled invalid ReferenceBlackWhite values. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. (CVE-2010-2595) Sauli Pahlman discovered that the TIFF library incorrectly handled certain default fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. (CVE-2010-2597, CVE-2010-2598) It was discovered that the TIFF library incorrectly validated certain data types. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. (CVE-2010-2630) It was discovered that the TIFF library incorrectly handled downsampled JPEG data. This issue only affected Ubuntu 10.04 LTS and 10.10. (CVE-2010-3087) It was discovered that the TIFF library incorrectly handled certain JPEG data. This issue only affected Ubuntu 6.06 LTS, 8.04 LTS and 9.10. (CVE-2011-0191) It was discovered that the TIFF library incorrectly handled certain TIFF FAX images. (CVE-2011-0191) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.4-1ubuntu3.10.diff.gz Size/MD5: 24707 92ee677a20237cfdb17b5dcbe024fc81 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.4-1ubuntu3.10.dsc Size/MD5: 1445 19186c480eda8ade1d4fd194a7e08bf6 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.7.4.orig.tar.gz Size/MD5: 1280113 02cf5c3820bda83b35bb35b45ae27005 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.7.4-1ubuntu3.10_amd64.deb Size/MD5: 220784 7b8f336c5190b816fb92f498b30755c9 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.7.4-1ubuntu3.10_amd64.deb Size/MD5: 283278 2633a7f81897814f7bddb303f6952b34 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.7.4-1ubuntu3.10_amd64.deb Size/MD5: 488554 bd11ebd5ae319660ec0eff4f22b55268 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.7.4-1ubuntu3.10_amd64.deb Size/MD5: 45210 2d75169ed1d84f4907d505780123691d http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.7.4-1ubuntu3.10_amd64.deb Size/MD5: 50372 d606202ec431cee4d43658887b7c53f7 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.7.4-1ubuntu3.10_i386.deb Size/MD5: 206424 d346905ce628f3b5afdfe1a4b5e46ee8 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.7.4-1ubuntu3.10_i386.deb Size/MD5: 260146 f8a0af4bb2a87fab5833e8bea85b4179 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.7.4-1ubuntu3.10_i386.deb Size/MD5: 462812 81f1884d1f83fbc7cf670233e79e464b http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.7.4-1ubuntu3.10_i386.deb Size/MD5: 45144 047a98941044eb476ff601a50a94cb97 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.7.4-1ubuntu3.10_i386.deb Size/MD5: 49650 0298317461310597a873c28bbe6c9c2d powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.7.4-1ubuntu3.10_powerpc.deb Size/MD5: 240378 8f832fa2e7ca2122ea17b8440db407a3 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.7.4-1ubuntu3.10_powerpc.deb Size/MD5: 289250 7118c8a2b9ee67fb759d89631b80ec33 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.7.4-1ubuntu3.10_powerpc.deb Size/MD5: 477164 46d81e5cca275c4f9fa490bccf5e1b54 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.7.4-1ubuntu3.10_powerpc.deb Size/MD5: 47366 8f493b29a1c6af1ede1ae20bb340542e http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.7.4-1ubuntu3.10_powerpc.deb Size/MD5: 52018 9cbc82320c0fb9160a55d9e966935308 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.7.4-1ubuntu3.10_sparc.deb Size/MD5: 209294 1c075ff5d8fe054cfbe59767156f2b12 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.7.4-1ubuntu3.10_sparc.deb Size/MD5: 271226 083721bbf42b3a9c2ba0619725cdea1c http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.7.4-1ubuntu3.10_sparc.deb Size/MD5: 467842 244140481e39cbae1caeea1cbc7242fb http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.7.4-1ubuntu3.10_sparc.deb Size/MD5: 45072 0ecf1aa2519fd0f70a54e97299a9a2aa http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.7.4-1ubuntu3.10_sparc.deb Size/MD5: 50206 1fd3434ab16f251802c05e69b2ec4172 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2-7ubuntu3.8.diff.gz Size/MD5: 23098 1ee89aac13034400cc5f65bc82350576 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2-7ubuntu3.8.dsc Size/MD5: 1534 db81aff18857a6a792e8e3d9f6419c25 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2.orig.tar.gz Size/MD5: 1333780 e6ec4ab957ef49d5aabc38b7a376910b amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.8.2-7ubuntu3.8_amd64.deb Size/MD5: 186052 117b7fef507321d3b40f31e82121d65c http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.8.2-7ubuntu3.8_amd64.deb Size/MD5: 583498 356ff0e0f3fa15764371a8d0ffbd2574 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.8.2-7ubuntu3.8_amd64.deb Size/MD5: 132044 f21e514b5f9ffa5e083d48e3ff2876be http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.8.2-7ubuntu3.8_amd64.deb Size/MD5: 5060 bd0be2af72fb9789ef27a5cf3445a960 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.8.2-7ubuntu3.8_amd64.deb Size/MD5: 10482 a49a0b07d12a18248a56d1c64322687b i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.8.2-7ubuntu3.8_i386.deb Size/MD5: 175314 d510325b149f2106114857e9cd1887a1 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.8.2-7ubuntu3.8_i386.deb Size/MD5: 552824 044e167a1106988f710d4b26cd480c13 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.8.2-7ubuntu3.8_i386.deb Size/MD5: 123468 8c41a5b4deb4daf59a27aa18bafc2a33 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.8.2-7ubuntu3.8_i386.deb Size/MD5: 5044 221fabdeb10a45b0e39b30fcd9876d57 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.8.2-7ubuntu3.8_i386.deb Size/MD5: 9934 139ed154385849ed4a76c21f14d1824c lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-7ubuntu3.8_lpia.deb Size/MD5: 177010 f861eceecd6f08085a7e66038b28d148 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-7ubuntu3.8_lpia.deb Size/MD5: 555294 27b3f40726cd5cf866dd80b5fb5f652d http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7ubuntu3.8_lpia.deb Size/MD5: 124582 a101756bd948bc2d526bbb3793655c46 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-7ubuntu3.8_lpia.deb Size/MD5: 4916 0fde80306a67eb766b878040048003fa http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-7ubuntu3.8_lpia.deb Size/MD5: 9976 36fdc7a9337f4a5391a5d951624775df powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-7ubuntu3.8_powerpc.deb Size/MD5: 223488 04f35d447aa797b255c249719f467896 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-7ubuntu3.8_powerpc.deb Size/MD5: 577476 53e4f31126ecae60b54a2614c29a02ef http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7ubuntu3.8_powerpc.deb Size/MD5: 135174 24d5e5f4e4903eae9ba2b4163eb0ab44 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-7ubuntu3.8_powerpc.deb Size/MD5: 7512 a361eb4c3985a90189342aced3932676 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-7ubuntu3.8_powerpc.deb Size/MD5: 13288 2f458ba98bbf136958d2a8cdc87a83ab sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-7ubuntu3.8_sparc.deb Size/MD5: 178860 d48dc98bba2aaaf1830ad3a9d69b99db http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-7ubuntu3.8_sparc.deb Size/MD5: 558838 c9ffd065811bf117f5c57dae82c4173b http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-7ubuntu3.8_sparc.deb Size/MD5: 123254 e11f44522f5cef8b3f4a8a633be5437d http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-7ubuntu3.8_sparc.deb Size/MD5: 4796 498f87c694b19560fe59ee3afb605af4 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-7ubuntu3.8_sparc.deb Size/MD5: 10700 5bb66a32a926f8fbd1a5b864a3d88cd7 Updated packages for Ubuntu 9.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2-13ubuntu0.5.diff.gz Size/MD5: 43070 e8b35ecf046a7c3619e1d9929de8b830 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2-13ubuntu0.5.dsc Size/MD5: 1978 d8a8180b56ba05c422d4b443afb1d44e http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.8.2.orig.tar.gz Size/MD5: 1333780 e6ec4ab957ef49d5aabc38b7a376910b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-doc_3.8.2-13ubuntu0.5_all.deb Size/MD5: 348112 a84bc452f3a0eea39c87ac3ac744112c amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_amd64.deb Size/MD5: 191416 300ef146f5155ff8ccdf51e8a684ff34 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_amd64.deb Size/MD5: 252426 b78ec6fcac494ac67fb4b357632dace3 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_amd64.deb Size/MD5: 135940 d3f0cb6e3491b6d335e905ddb2139dfc http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_amd64.deb Size/MD5: 6332 b7da9edb5b42f9c08596a6b1966cb6e0 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_amd64.deb Size/MD5: 12004 3107c05e0644d55184c568fbd205c8d4 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_i386.deb Size/MD5: 176368 b2b0a5ed89fa9405dea1a1944bf4e606 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_i386.deb Size/MD5: 232588 71573f111b56ed24c2bb95e70cf24950 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_i386.deb Size/MD5: 125002 9127f1c5991d7bebf346d7996aa05549 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_i386.deb Size/MD5: 6446 8535ecbdf277f311afe69e053e7027eb http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_i386.deb Size/MD5: 11292 21192b1ec3a90204f70ac7e715f6ef94 armel architecture (ARM Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_armel.deb Size/MD5: 182752 27e8c1ba005bb913056725f27afed10b http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_armel.deb Size/MD5: 233860 7bb2dfcf30084a32cfda47150de12820 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_armel.deb Size/MD5: 124716 5bf3991de9df681e72aeb2b9cb0157e3 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_armel.deb Size/MD5: 5966 f7269719e2c4b9f44abb54ea640452b9 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_armel.deb Size/MD5: 11160 213b7115f391a62a039e86bd2aed21e3 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_lpia.deb Size/MD5: 177048 6f228aae0027ce228001ab1e03c1420f http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_lpia.deb Size/MD5: 234412 2be52c2f11d51dc60ebd6358921ed539 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_lpia.deb Size/MD5: 126608 5b98943322e5546def050c29f0137c51 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_lpia.deb Size/MD5: 6312 9dfcffd32f1aa8e42e6e5f94c8171333 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_lpia.deb Size/MD5: 11340 69f92d56438e597d2733cca9fe192e09 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_powerpc.deb Size/MD5: 191484 3af0b1c5f8e037c97831d2321c144069 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_powerpc.deb Size/MD5: 256554 94513c2b20ec5e2206d5b5476ac4b6e1 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_powerpc.deb Size/MD5: 137434 0dd8d58ca4136b26395ec9619352cbf4 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_powerpc.deb Size/MD5: 6724 752b5398be235d406db9b0070c8b4bcc http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_powerpc.deb Size/MD5: 12080 857d09fbe80934ec33149da04cf5b4fe sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.8.2-13ubuntu0.5_sparc.deb Size/MD5: 184288 a83a8a638af348c50d3bb64a2c0490e4 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.8.2-13ubuntu0.5_sparc.deb Size/MD5: 237164 9a5c6358c6c65dfc8e5154f79c5937a1 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.8.2-13ubuntu0.5_sparc.deb Size/MD5: 125062 2e70ed4b0b98f15d9b6d4d1aa2c223fe http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.8.2-13ubuntu0.5_sparc.deb Size/MD5: 6096 e374e39bdeb2b16f8944713dc6b59ec2 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.8.2-13ubuntu0.5_sparc.deb Size/MD5: 12036 3bd0ece44e01a49c32decff3d318bcc3 Updated packages for Ubuntu 10.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.2-2ubuntu0.5.diff.gz Size/MD5: 20142 b939eddaecc09a223f750ddc9ec300a7 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.2-2ubuntu0.5.dsc Size/MD5: 1974 0ab3539d8af96ca2ca23c1d74d79e8c6 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.2.orig.tar.gz Size/MD5: 1419742 93e56e421679c591de7552db13384cb8 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-doc_3.9.2-2ubuntu0.5_all.deb Size/MD5: 359126 ddf2cb68732e7fd96ea2078ce0ad4742 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.9.2-2ubuntu0.5_amd64.deb Size/MD5: 250490 975aec44c621ff1e524a7d0c344c461d http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.9.2-2ubuntu0.5_amd64.deb Size/MD5: 269922 24ffd793f4f4cab1c419281358f95b06 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.9.2-2ubuntu0.5_amd64.deb Size/MD5: 149244 8de4b36f57fd254339472d92d58df436 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.9.2-2ubuntu0.5_amd64.deb Size/MD5: 6384 dd647e2d96b24485c9a3d512568a33e8 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.9.2-2ubuntu0.5_amd64.deb Size/MD5: 12028 f312a06be417327ccaab3bc83fce43ee i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.9.2-2ubuntu0.5_i386.deb Size/MD5: 234120 b80a26f6acbf41fc2835dea7be97d332 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.9.2-2ubuntu0.5_i386.deb Size/MD5: 246962 2aced2d3476f07034714c32581451fca http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.9.2-2ubuntu0.5_i386.deb Size/MD5: 136750 9e662029ab9932f9bb5cf551c9a25c70 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.9.2-2ubuntu0.5_i386.deb Size/MD5: 6486 588d1bff01cbec45eefbfb25864b48c7 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.9.2-2ubuntu0.5_i386.deb Size/MD5: 11282 028b976bcc83292a2a436961a26cff1b armel architecture (ARM Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.9.2-2ubuntu0.5_armel.deb Size/MD5: 237816 b1bb7396d24ca82d5a72012e7f5902df http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.9.2-2ubuntu0.5_armel.deb Size/MD5: 238800 82ec468a735c037f758424ee05ab0eda http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.9.2-2ubuntu0.5_armel.deb Size/MD5: 129636 b6277537fd8ca0a7258d156b8185fc6c http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.9.2-2ubuntu0.5_armel.deb Size/MD5: 5980 5ee322e0d78f7f440501872a91e78c98 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.9.2-2ubuntu0.5_armel.deb Size/MD5: 11300 c0120b282e1fa3c9922b9218a1d86271 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.9.2-2ubuntu0.5_powerpc.deb Size/MD5: 253514 208b8a67298bb8435b790579c2369258 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.9.2-2ubuntu0.5_powerpc.deb Size/MD5: 275256 4ccb314e621e464c06a709fbd7632384 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.9.2-2ubuntu0.5_powerpc.deb Size/MD5: 150724 4787f755ef29dd7198699c9456ca5fd0 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.9.2-2ubuntu0.5_powerpc.deb Size/MD5: 6770 759c330d4a755d3d217ca8afef8cb191 http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.9.2-2ubuntu0.5_powerpc.deb Size/MD5: 12092 86dd9f88b6d3f4e3f7ee0c3f98ce4448 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.9.2-2ubuntu0.5_sparc.deb Size/MD5: 248776 0e081f6795686de636fdb537d0da0af3 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.9.2-2ubuntu0.5_sparc.deb Size/MD5: 257346 b1cb2500a7b1ada561852e12546279a4 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.9.2-2ubuntu0.5_sparc.deb Size/MD5: 143484 b24ccd56b9eee79c062d8a1e13e65326 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.9.2-2ubuntu0.5_sparc.deb Size/MD5: 6226 28e807e1ae69640a7e0a35ea79b8913a http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.9.2-2ubuntu0.5_sparc.deb Size/MD5: 11922 1acad867116630bb02cf53831f49fb91 Updated packages for Ubuntu 10.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.4-2ubuntu0.2.debian.tar.gz Size/MD5: 18124 6b91f60b7bc92c8f0710f4088c1f38f3 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.4-2ubuntu0.2.dsc Size/MD5: 1991 020c2a94b61792b09f6d01752f2c7f5d http://security.ubuntu.com/ubuntu/pool/main/t/tiff/tiff_3.9.4.orig.tar.gz Size/MD5: 1436968 2006c1bdd12644dbf02956955175afd6 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-doc_3.9.4-2ubuntu0.2_all.deb Size/MD5: 342928 4d7df4c971ba92ab11d738820853fcc4 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.9.4-2ubuntu0.2_amd64.deb Size/MD5: 248246 dd83a166330ad6268952b8e49f075012 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.9.4-2ubuntu0.2_amd64.deb Size/MD5: 270788 73525f6754327725fd2e93fe1fc0e4fb http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.9.4-2ubuntu0.2_amd64.deb Size/MD5: 149490 2da1a59a5a933e822256d2b6d89454c6 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.9.4-2ubuntu0.2_amd64.deb Size/MD5: 6310 b566e3ac1e893179519b2596798ad492 http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.9.4-2ubuntu0.2_amd64.deb Size/MD5: 11806 a523fb6ef9ac518e5869fdc9bd72d937 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff-tools_3.9.4-2ubuntu0.2_i386.deb Size/MD5: 230148 a676650de4cfea04a7bfd000de0da151 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4-dev_3.9.4-2ubuntu0.2_i386.deb Size/MD5: 247138 95194c2ea2ab0ca87e6b8867dae07385 http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiff4_3.9.4-2ubuntu0.2_i386.deb Size/MD5: 136668 f0931de0028f3538f92ef2547cde7bba http://security.ubuntu.com/ubuntu/pool/main/t/tiff/libtiffxx0c2_3.9.4-2ubuntu0.2_i386.deb Size/MD5: 6424 ad458d476aa6df65bfaec35f5cba9c0b http://security.ubuntu.com/ubuntu/pool/universe/t/tiff/libtiff-opengl_3.9.4-2ubuntu0.2_i386.deb Size/MD5: 11144 efd76c12cc9f9df3ba719e8f073a6bfa armel architecture (ARM Architecture): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.9.4-2ubuntu0.2_armel.deb Size/MD5: 256880 6aedba603449a04715b504caac95ed22 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.9.4-2ubuntu0.2_armel.deb Size/MD5: 271424 0587dc26b90416181bb71f0ee0acbed3 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.9.4-2ubuntu0.2_armel.deb Size/MD5: 151800 0a97a3959787ce6e4d4a60db21f4bd19 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.9.4-2ubuntu0.2_armel.deb Size/MD5: 5844 6efde8a677921feabc6dd5156181d72a http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.9.4-2ubuntu0.2_armel.deb Size/MD5: 11228 9e354f5270bc717488682dfc4712e74a powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/t/tiff/libtiff-tools_3.9.4-2ubuntu0.2_powerpc.deb Size/MD5: 250366 6fa58ac5fb03e3b6866499f53cb3e79d http://ports.ubuntu.com/pool/main/t/tiff/libtiff4-dev_3.9.4-2ubuntu0.2_powerpc.deb Size/MD5: 275860 d4f92d8330e793d8056e4bc5c180fba9 http://ports.ubuntu.com/pool/main/t/tiff/libtiff4_3.9.4-2ubuntu0.2_powerpc.deb Size/MD5: 150712 c47116bbde1de23b39bd86ce6733e033 http://ports.ubuntu.com/pool/main/t/tiff/libtiffxx0c2_3.9.4-2ubuntu0.2_powerpc.deb Size/MD5: 6702 d9524527cbcbd6b38cb782d73adbdc3b http://ports.ubuntu.com/pool/universe/t/tiff/libtiff-opengl_3.9.4-2ubuntu0.2_powerpc.deb Size/MD5: 11962 a31983d4e49adaa4fa0321c16105bae3 . Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&amp;products_id=490 The updated packages have been patched to correct these issues. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2347 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2065 http://support.apple.com/kb/HT4554 _______________________________________________________________________ Updated Packages: Mandriva Linux 2009.0: 6161b79e9a210ef10136cf522fcae735 2009.0/i586/libtiff3-3.8.2-12.4mdv2009.0.i586.rpm a4c724e9889a465d7c3f80618c137a6e 2009.0/i586/libtiff3-devel-3.8.2-12.4mdv2009.0.i586.rpm 59bd1f954344f75c89562942b8e67f26 2009.0/i586/libtiff3-static-devel-3.8.2-12.4mdv2009.0.i586.rpm f0e36e04e25d5f7194d51c8ec5aceace 2009.0/i586/libtiff-progs-3.8.2-12.4mdv2009.0.i586.rpm 4dba15dd4b9930f9eb8819feea83fdc2 2009.0/SRPMS/libtiff-3.8.2-12.4mdv2009.0.src.rpm Mandriva Linux 2009.0/X86_64: 43bd1b087e1bd33785e0391508958cc0 2009.0/x86_64/lib64tiff3-3.8.2-12.4mdv2009.0.x86_64.rpm a4c118fd83be8cc4e68bcfef5364c768 2009.0/x86_64/lib64tiff3-devel-3.8.2-12.4mdv2009.0.x86_64.rpm 134ae47488e549ef44b37467039d8c48 2009.0/x86_64/lib64tiff3-static-devel-3.8.2-12.4mdv2009.0.x86_64.rpm 96a726fe5e7bdd10c4add7b5b6a9765f 2009.0/x86_64/libtiff-progs-3.8.2-12.4mdv2009.0.x86_64.rpm 4dba15dd4b9930f9eb8819feea83fdc2 2009.0/SRPMS/libtiff-3.8.2-12.4mdv2009.0.src.rpm Mandriva Linux 2010.0: d473eec0df8bf76047b4cc9fd039517f 2010.0/i586/libtiff3-3.9.1-4.3mdv2010.0.i586.rpm 571154033ffa0756e3280822220a2903 2010.0/i586/libtiff-devel-3.9.1-4.3mdv2010.0.i586.rpm 7dbf407fb2ad92bbcc8e07dd50378145 2010.0/i586/libtiff-progs-3.9.1-4.3mdv2010.0.i586.rpm 6f00afaaa934688a567fb835fdba6408 2010.0/i586/libtiff-static-devel-3.9.1-4.3mdv2010.0.i586.rpm 476e72930534b39b3a233ff39d32b749 2010.0/SRPMS/libtiff-3.9.1-4.3mdv2010.0.src.rpm Mandriva Linux 2010.0/X86_64: 9b00125f6db8ef5f0007015f824a2297 2010.0/x86_64/lib64tiff3-3.9.1-4.3mdv2010.0.x86_64.rpm 5bce8273b1596a72b20762a2a10a4ba5 2010.0/x86_64/lib64tiff-devel-3.9.1-4.3mdv2010.0.x86_64.rpm 1dfce1fe83cc7e20fb28ed6b90620cb6 2010.0/x86_64/lib64tiff-static-devel-3.9.1-4.3mdv2010.0.x86_64.rpm e945257630a37a38ff6a182fcb9a3983 2010.0/x86_64/libtiff-progs-3.9.1-4.3mdv2010.0.x86_64.rpm 476e72930534b39b3a233ff39d32b749 2010.0/SRPMS/libtiff-3.9.1-4.3mdv2010.0.src.rpm Mandriva Linux 2010.1: 1ebefe4b147df76b2432e35efb6ccc68 2010.1/i586/libtiff3-3.9.2-2.3mdv2010.2.i586.rpm 3b3f043455d4fa867de179c0d445812f 2010.1/i586/libtiff-devel-3.9.2-2.3mdv2010.2.i586.rpm a4c9326657d3fa9c238c59a0a54c5fa5 2010.1/i586/libtiff-progs-3.9.2-2.3mdv2010.2.i586.rpm bec7660cf735caef3d795254ee12dfb8 2010.1/i586/libtiff-static-devel-3.9.2-2.3mdv2010.2.i586.rpm 11d15974ed4ffe30164791e0603dff7e 2010.1/SRPMS/libtiff-3.9.2-2.3mdv2010.2.src.rpm Mandriva Linux 2010.1/X86_64: 72ce70d9e1db8e677ec346e69aa57469 2010.1/x86_64/lib64tiff3-3.9.2-2.3mdv2010.2.x86_64.rpm b09392f442a6f79a3b7b668b15fb93b6 2010.1/x86_64/lib64tiff-devel-3.9.2-2.3mdv2010.2.x86_64.rpm fdfd079e10cfd09d27771bf6d95610f2 2010.1/x86_64/lib64tiff-static-devel-3.9.2-2.3mdv2010.2.x86_64.rpm 763fb491e5896c4c4cddb46e0935a69e 2010.1/x86_64/libtiff-progs-3.9.2-2.3mdv2010.2.x86_64.rpm 11d15974ed4ffe30164791e0603dff7e 2010.1/SRPMS/libtiff-3.9.2-2.3mdv2010.2.src.rpm Corporate 4.0: 3ff2e1a4ef40b7da017d2d508037434b corporate/4.0/i586/libtiff3-3.6.1-12.10.20060mlcs4.i586.rpm 64a74440c32e4dbd0f27148400b2277f corporate/4.0/i586/libtiff3-devel-3.6.1-12.10.20060mlcs4.i586.rpm 5849512079a3fccfd6794ad516585c0b corporate/4.0/i586/libtiff3-static-devel-3.6.1-12.10.20060mlcs4.i586.rpm 70fa38c74000f8c6a00c5f13611a41fb corporate/4.0/i586/libtiff-progs-3.6.1-12.10.20060mlcs4.i586.rpm d3cb50ab91beab6a422425dc024c41ef corporate/4.0/SRPMS/libtiff-3.6.1-12.10.20060mlcs4.src.rpm Corporate 4.0/X86_64: 09375d3d22f0e7486194927ecb219269 corporate/4.0/x86_64/lib64tiff3-3.6.1-12.10.20060mlcs4.x86_64.rpm 35badc0f9c59049faa0c47e2bf71a97e corporate/4.0/x86_64/lib64tiff3-devel-3.6.1-12.10.20060mlcs4.x86_64.rpm 96ec56339c5bb9e6ddbd98cdb179c397 corporate/4.0/x86_64/lib64tiff3-static-devel-3.6.1-12.10.20060mlcs4.x86_64.rpm 136c5faf1a6eb66b156986faf5782ec6 corporate/4.0/x86_64/libtiff-progs-3.6.1-12.10.20060mlcs4.x86_64.rpm d3cb50ab91beab6a422425dc024c41ef corporate/4.0/SRPMS/libtiff-3.6.1-12.10.20060mlcs4.src.rpm Mandriva Enterprise Server 5: db92b7deb5c1ebd74a8daf44437afaa1 mes5/i586/libtiff3-3.8.2-12.4mdvmes5.1.i586.rpm 31465ba8554e93c9f83857906c2ac485 mes5/i586/libtiff3-devel-3.8.2-12.4mdvmes5.1.i586.rpm 826524e4a99a8607075fb7969b100a66 mes5/i586/libtiff3-static-devel-3.8.2-12.4mdvmes5.1.i586.rpm 239db171a27266491b01d4709f6c3970 mes5/i586/libtiff-progs-3.8.2-12.4mdvmes5.1.i586.rpm e0b336563cf715de1750ac83eb852683 mes5/SRPMS/libtiff-3.8.2-12.4mdvmes5.1.src.rpm Mandriva Enterprise Server 5/X86_64: def4750ff7298b1c47690444eb3dab53 mes5/x86_64/lib64tiff3-3.8.2-12.4mdvmes5.1.x86_64.rpm 957e1a10a6785ce5c499e3baf50a674e mes5/x86_64/lib64tiff3-devel-3.8.2-12.4mdvmes5.1.x86_64.rpm 8f74482ce1c2468095de1994ba833e57 mes5/x86_64/lib64tiff3-static-devel-3.8.2-12.4mdvmes5.1.x86_64.rpm 93c37769ad6892568dd7370b9ed0a153 mes5/x86_64/libtiff-progs-3.8.2-12.4mdvmes5.1.x86_64.rpm e0b336563cf715de1750ac83eb852683 mes5/SRPMS/libtiff-3.8.2-12.4mdvmes5.1.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201209-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libTIFF: Multiple vulnerabilities Date: September 23, 2012 Bugs: #307001, #324885, #357271, #359871, #371308, #410931, #422673, #427166 ID: 201209-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. Background ========== libTIFF provides support for reading and manipulating TIFF (Tagged Image File Format) images. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/tiff < 4.0.2-r1 *>= 3.9.5-r2 >= 4.0.2-r1 Description =========== Multiple vulnerabilities have been discovered in libTIFF. Please review the CVE identifiers referenced below for details. Workaround ========== There is no known workaround at this time. Resolution ========== All libTIFF 4.0 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/tiff-4.0.2-r1" All libTIFF 3.9 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/tiff-3.9.5-r2" References ========== [ 1 ] CVE-2009-2347 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2347 [ 2 ] CVE-2009-5022 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-5022 [ 3 ] CVE-2010-1411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1411 [ 4 ] CVE-2010-2065 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2065 [ 5 ] CVE-2010-2067 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2067 [ 6 ] CVE-2010-2233 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2233 [ 7 ] CVE-2010-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2443 [ 8 ] CVE-2010-2481 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2481 [ 9 ] CVE-2010-2482 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2482 [ 10 ] CVE-2010-2483 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2483 [ 11 ] CVE-2010-2595 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2595 [ 12 ] CVE-2010-2596 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2596 [ 13 ] CVE-2010-2597 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2597 [ 14 ] CVE-2010-2630 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2630 [ 15 ] CVE-2010-2631 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2631 [ 16 ] CVE-2010-3087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3087 [ 17 ] CVE-2010-4665 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4665 [ 18 ] CVE-2011-0192 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0192 [ 19 ] CVE-2011-0192 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0192 [ 20 ] CVE-2011-1167 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1167 [ 21 ] CVE-2011-1167 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1167 [ 22 ] CVE-2012-1173 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1173 [ 23 ] CVE-2012-2088 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2088 [ 24 ] CVE-2012-2113 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2113 [ 25 ] CVE-2012-3401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3401 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201209-02.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-10-12-2 Apple TV Software Update 4.4 Apple TV Software Update 4.4 is now available and addresses the following: Apple TV Available for: Apple TV 4.0 through 4.3 Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information Description: Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted. Apple TV Available for: Apple TV 4.0 through 4.3 Impact: Support for X.509 certificates with MD5 hashes may expose users to spoofing and information disclosure as attacks improve Description: Certificates signed using the MD5 hash algorithm were accepted by iOS. This algorithm has known cryptographic weaknesses. Further research or a misconfigured certificate authority could have allowed the creation of X.509 certificates with attacker controlled values that would have been trusted by the system. This would have exposed X.509 based protocols to spoofing, man in the middle attacks, and information disclosure. This update disables support for an X.509 certificate with an MD5 hash for any use other than as a trusted root certificate. CVE-ID CVE-2011-3427 Apple TV Available for: Apple TV 4.0 through 4.3 Impact: An attacker could decrypt part of a SSL connection Description: Only the SSLv3 and TLS 1.0 versions of SSL were supported. These versions are subject to a protocol weakness when using block ciphers. A man-in-the-middle attacker could have injected invalid data, causing the connection to close but revealing some information about the previous data. If the same connection was attempted repeatedly the attacker may eventually have been able to decrypt the data being sent, such as a password. This issue is addressed by adding support for TLS 1.2. CVE-ID CVE-2011-0241 : Cyril CATTIAUX of Tessi Technologies Apple TV Available for: Apple TV 4.0 through 4.3 Impact: A remote attacker may cause a device reset Description: The kernel failed to promptly reclaim memory from incomplete TCP connections. An attacker with the ability to connect to a listening service on an iOS device could exhaust system resources. CVE-ID CVE-2011-3259 : Wouter van der Veer of Topicus I&I, and Josh Enders Apple TV Available for: Apple TV 4.0 through 4.3 Impact: An attacker with a privileged network position may cause an unexpected application termination or arbitrary code execution Description: A one-byte heap buffer overflow existed in libxml's handling of XML data. CVE-ID CVE-2011-0216 : Billy Rios of the Google Security Team Apple TV Available for: Apple TV 4.0 through 4.3 Impact: An attacker with a privileged network position may cause an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in JavaScriptCore. CVE-ID CVE-2011-3232 : Aki Helin of OUSPG Installation note: Apple TV will periodically check for software updates. Alternatively, you may manually check for software updates by selecting "Settings -> General -> Update Software". To check the current version of software, select "Settings -> General -> About". Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) iQEcBAEBAgAGBQJOlcwaAAoJEGnF2JsdZQeegxcIAKElICLSw74Dj2vV1uDzwh8f 6cOg/AKME1KB80rFgkHymBZM4t1mrLhwYLFs5w8oFRbbL02fxAxhw/DRWYHoqWHw mPR7A2Alg7fwX4FAyhJ/EVb8/szUvRsS9YD2AxOZeDdQdw+40mP5rYgx+dkURuag Rx6S5M4LaQ7A0/yfnRhUCWc6Er78LIcFxkjY4XEHwRuOR0jOnZyHSI1wx1UAvkam HeWtRLnamHSANnZhQhrp+cesGRI5HrbbFHGJgc1nBIGZz65qgk3ZOKGh9MPBMrGm ISg0lZHs/5gVKBFmkaMj1wyMAdsaDezWov01Bqz/UrMVuqo/7sjO4Is8x99W0EE= =AlFT -----END PGP SIGNATURE-----

AFFECTED PRODUCTS