SECURITY

USN-3906-1: LibTIFF vulnerabilities tiff vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file. Software Description tiff – Tag Image File Format (TIFF) library Details It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 libtiff-tools – 4.0.9-6ubuntu0.2 libtiff5 – 4.0.9-6ubuntu0.2 Ubuntu 18.04 LTS libtiff-tools – 4.0.9-5ubuntu0.2 libtiff5 – 4.0.9-5ubuntu0.2 Ubuntu 16.04 LTS libtiff-tools [ more… ]