LibTIFF 'tif_lzw.c' Remote Buffer Underflow Vulnerability

LibTIFF 'tif_lzw.c' Remote Buffer Underflow Vulnerability

Solution:
Vendor updated are available. Please see the references for more information.

Apple Aperture 2

Apple iLifeSupport.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=22080&cat= 59&platform=osx&method=sa/iLifeSupport.dmg

MandrakeSoft Linux Mandrake 2008.0

Mandriva libtiff-progs-3.8.2-8.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-3.8.2-8.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-devel-3.8.2-8.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-static-devel-3.8.2-8.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Sun Solaris 10

Sun 119900-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -119900-07-1

MandrakeSoft Linux Mandrake 2007.1 x86_64

Mandriva lib64tiff3-3.8.2-8.1mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64tiff3-devel-3.8.2-8.1mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64tiff3-static-devel-3.8.2-8.1mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff-progs-3.8.2-8.1mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Debian Linux 4.0 amd64

Debian libtiff-opengl_3.8.2-7+etch1_amd64.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.8 .2-7+etch1_amd64.deb

Debian libtiff-tools_3.8.2-7+etch1_amd64.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.8. 2-7+etch1_amd64.deb

Debian libtiff4-dev_3.8.2-7+etch1_amd64.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.8.2 -7+etch1_amd64.deb

Debian libtiff4_3.8.2-7+etch1_amd64.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.8.2-7+e tch1_amd64.deb

Debian libtiffxx0c2_3.8.2-7+etch1_amd64.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0c2_3.8.2 -7+etch1_amd64.deb

Debian Linux 4.0 ia-32

Debian libtiff-opengl_3.8.2-7+etch1_i386.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.8 .2-7+etch1_i386.deb

Debian libtiff-tools_3.8.2-7+etch1_i386.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.8. 2-7+etch1_i386.deb

Debian libtiff4-dev_3.8.2-7+etch1_i386.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.8.2 -7+etch1_i386.deb

Debian libtiff4_3.8.2-7+etch1_i386.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.8.2-7+e tch1_i386.deb

Debian libtiffxx0c2_3.8.2-7+etch1_i386.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0c2_3.8.2 -7+etch1_i386.deb

Debian Linux 4.0 mips

Debian libtiff-opengl_3.8.2-7+etch1_mips.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.8 .2-7+etch1_mips.deb

Debian libtiff-tools_3.8.2-7+etch1_mips.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.8. 2-7+etch1_mips.deb

Debian libtiff4-dev_3.8.2-7+etch1_mips.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.8.2 -7+etch1_mips.deb

Debian libtiff4_3.8.2-7+etch1_mips.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.8.2-7+e tch1_mips.deb

Debian libtiffxx0c2_3.8.2-7+etch1_mips.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0c2_3.8.2 -7+etch1_mips.deb

MandrakeSoft Linux Mandrake 2008.1 x86_64

Mandriva lib64tiff3-3.8.2-10.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64tiff3-devel-3.8.2-10.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64tiff3-static-devel-3.8.2-10.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff-progs-3.8.2-10.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft Linux Mandrake 2008.1

Mandriva libtiff-progs-3.8.2-10.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-3.8.2-10.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-devel-3.8.2-10.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-static-devel-3.8.2-10.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Debian Linux 4.0 powerpc

Debian libtiff-opengl_3.8.2-7+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-opengl_3.8 .2-7+etch1_powerpc.deb

Debian libtiff-tools_3.8.2-7+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff-tools_3.8. 2-7+etch1_powerpc.deb

Debian libtiff4-dev_3.8.2-7+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4-dev_3.8.2 -7+etch1_powerpc.deb

Debian libtiff4_3.8.2-7+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiff4_3.8.2-7+e tch1_powerpc.deb

Debian libtiffxx0c2_3.8.2-7+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/t/tiff/libtiffxx0c2_3.8.2 -7+etch1_powerpc.deb

Apple Mac OS X Server 10.4.11

Apple SecUpdSrvr2008-006PPC.dmg
http://www.apple.com/support/downloads/

Apple SecUpdSrvr2008-006Univ.dmg
http://www.apple.com/support/downloads/

Apple Mac OS X 10.5.2

Apple MacOSXUpdCombo10.5.5.dmg
http://www.apple.com/support/downloads/

Apple Mac OS X 10.5.3

Apple MacOSXUpdCombo10.5.5.dmg
http://www.apple.com/support/downloads/

Apple Mac OS X Server 10.5.3

Apple MacOSXServerUpdCombo10.5.5.dmg
http://www.apple.com/support/downloads/

Apple Mac OS X 10.5.4

Apple MacOSXUpd10.5.5.dmg
http://www.apple.com/support/downloads/

MandrakeSoft Corporate Server 3.0

Mandriva libtiff-progs-3.5.7-11.14.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-3.5.7-11.14.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-devel-3.5.7-11.14.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libtiff3-static-devel-3.5.7-11.14.C30mdk.i586.rpm
http://www.mandriva.com/en/download/