[SECURITY] Fedora 20 Update: mingw-libtiff-4.0.3-4.fc20

updates at fedoraproject.org updates at fedoraproject.org
Tue Jun 10 02:56:35 UTC 2014 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-6837
2014-05-29 22:40:22
--------------------------------------------------------------------------------

Name        : mingw-libtiff
Product     : Fedora 20
Version     : 4.0.3
Release     : 4.fc20
URL         : http://www.remotesensing.org/libtiff/
Summary     : MinGW Windows port of the LibTIFF library
Description :
The libtiff package contains a library of functions for manipulating
TIFF (Tagged Image File Format) image format files.  TIFF is a widely
used file format for bitmapped images.  TIFF files usually end in the
.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF
format image files.

--------------------------------------------------------------------------------
Update Information:

Fixes various CVE's
--------------------------------------------------------------------------------
ChangeLog:

* Thu May 29 2014 Erik van Pienbroek <epienbro at fedoraproject.org> - 4.0.3-4
- Fix CVE-2013-4231, CVE-2013-4232, CVE-2013-4243, CVE-2013-4244 (RHBZ #996833)
- Fix CVE-2012-4447, CVE-2012-4564, CVE-2013-1960.patch, CVE-2013-1961
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #996833 - CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 mingw-libtiff various flaws [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=996833
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update mingw-libtiff' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list