[El-errata] ELSA-2009-1159 Moderate: Enterprise Linux 4 libtiff security update

Errata Announcements for Enterprise Linux el-errata at oss.oracle.com
Thu Jul 16 17:36:49 PDT 2009


Enterprise Linux Security Advisory ELSA-2009-1159

https://rhn.redhat.com/errata/RHSA-2009-1159.html

The following updated rpms for Enterprise Linux 4 have been uploaded to 
the Unbreakable Linux Network:

i386:
libtiff-3.6.1-12.el4_8.4.i386.rpm
libtiff-devel-3.6.1-12.el4_8.4.i386.rpm

x86_64:
libtiff-3.6.1-12.el4_8.4.i386.rpm
libtiff-3.6.1-12.el4_8.4.x86_64.rpm
libtiff-devel-3.6.1-12.el4_8.4.x86_64.rpm

ia64:
libtiff-3.6.1-12.el4_8.4.i386.rpm
libtiff-3.6.1-12.el4_8.4.ia64.rpm
libtiff-devel-3.6.1-12.el4_8.4.ia64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/libtiff-3.6.1-12.el4_8.4.src.rpm

Description of changes:

[3.6.1-12.el4.4]
- Fix buffer overrun risks caused by unchecked integer overflow 
(CVE-2009-2347)
Resolves: #507723
- Use explicit release in devel-to-base Requires, per rpmdiff recommendation

[3.6.1-12.el4.3]
- Fix some more LZW decoding vulnerabilities (CVE-2009-2285)
Resolves: #507723
- Update upstream URL





More information about the El-errata mailing list