tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "python3-gdal": "1.10.1+dfsg-5ubuntu1+esm1", "python-gdal-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "python3-gdal-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "gdal-bin": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-perl-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-java": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-java-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "python-gdal": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-dev": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal1h": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-doc": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal1-dev": "1.10.1+dfsg-5ubuntu1+esm1", "gdal-bin-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal1h-dbgsym": "1.10.1+dfsg-5ubuntu1+esm1", "libgdal-perl": "1.10.1+dfsg-5ubuntu1+esm1" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "libtiff-doc": "4.0.3-7ubuntu0.11+esm6", "libtiff5-dbgsym": "4.0.3-7ubuntu0.11+esm6", "libtiff-opengl": "4.0.3-7ubuntu0.11+esm6", "libtiffxx5-dbgsym": "4.0.3-7ubuntu0.11+esm6", "libtiff4-dev": "4.0.3-7ubuntu0.11+esm6", "libtiff-opengl-dbgsym": "4.0.3-7ubuntu0.11+esm6", "libtiff-tools-dbgsym": "4.0.3-7ubuntu0.11+esm6", "libtiff5": "4.0.3-7ubuntu0.11+esm6", "libtiff5-alt-dev": "4.0.3-7ubuntu0.11+esm6", "libtiff-tools": "4.0.3-7ubuntu0.11+esm6", "libtiffxx5": "4.0.3-7ubuntu0.11+esm6", "libtiff5-dev": "4.0.3-7ubuntu0.11+esm6" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "chromium-chromedriver": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-codecs-ffmpeg-extra-dbgsym": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-browser-dbgsym": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-codecs-ffmpeg": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-chromedriver-dbgsym": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-browser": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-codecs-ffmpeg-dbgsym": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-browser-l10n": "80.0.3987.87-0ubuntu0.16.04.1", "chromium-codecs-ffmpeg-extra": "80.0.3987.87-0ubuntu0.16.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libtiff-doc": "4.0.6-1ubuntu0.7", "libtiff5-dbgsym": "4.0.6-1ubuntu0.7", "libtiff-opengl": "4.0.6-1ubuntu0.7", "libtiffxx5-dbgsym": "4.0.6-1ubuntu0.7", "libtiff-opengl-dbgsym": "4.0.6-1ubuntu0.7", "libtiff-tools-dbgsym": "4.0.6-1ubuntu0.7", "libtiff5": "4.0.6-1ubuntu0.7", "libtiff-tools": "4.0.6-1ubuntu0.7", "libtiffxx5": "4.0.6-1ubuntu0.7", "libtiff5-dev": "4.0.6-1ubuntu0.7" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "chromium-chromedriver": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-codecs-ffmpeg-extra-dbgsym": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-browser-dbgsym": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-codecs-ffmpeg": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-chromedriver-dbgsym": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-browser": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-codecs-ffmpeg-dbgsym": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-browser-l10n": "80.0.3987.87-0ubuntu0.18.04.1", "chromium-codecs-ffmpeg-extra": "80.0.3987.87-0ubuntu0.18.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libtiff-doc": "4.0.9-5ubuntu0.3", "libtiff5-dbgsym": "4.0.9-5ubuntu0.3", "libtiff-opengl": "4.0.9-5ubuntu0.3", "libtiffxx5-dbgsym": "4.0.9-5ubuntu0.3", "libtiff-opengl-dbgsym": "4.0.9-5ubuntu0.3", "libtiff-tools-dbgsym": "4.0.9-5ubuntu0.3", "libtiff5": "4.0.9-5ubuntu0.3", "libtiff-dev": "4.0.9-5ubuntu0.3", "libtiff-tools": "4.0.9-5ubuntu0.3", "libtiffxx5": "4.0.9-5ubuntu0.3", "libtiff5-dev": "4.0.9-5ubuntu0.3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libtiff-doc": "4.0.10+git191003-1", "libtiff5-dbgsym": "4.0.10+git191003-1", "libtiff-opengl": "4.0.10+git191003-1", "libtiffxx5-dbgsym": "4.0.10+git191003-1", "libtiff-opengl-dbgsym": "4.0.10+git191003-1", "libtiff-tools-dbgsym": "4.0.10+git191003-1", "libtiff5": "4.0.10+git191003-1", "libtiff-dev": "4.0.10+git191003-1", "libtiff-tools": "4.0.10+git191003-1", "libtiffxx5": "4.0.10+git191003-1", "libtiff5-dev": "4.0.10+git191003-1" } ] }