This repository has been archived by the owner on Oct 10, 2023. It is now read-only.
0.343.0
cf-buildpacks-eng
released this
01 Dec 23:58
·
26 commits
to main
since this release
Notably, this release addresses:
USN-5743-2 USN-5743-2: LibTIFF vulnerability:
- CVE-2022-3970: A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.
-ii libtiff-dev 4.0.9-5ubuntu0.8 amd64 Tag Image File Format library (TIFF), development files, current version
-ii libtiff5:amd64 4.0.9-5ubuntu0.8 amd64 Tag Image File Format (TIFF) library
-ii libtiff5-dev:amd64 4.0.9-5ubuntu0.8 amd64 Tag Image File Format library (TIFF), development files
-ii libtiffxx5:amd64 4.0.9-5ubuntu0.8 amd64 Tag Image File Format (TIFF) library -- C++ interface
+ii libtiff-dev 4.0.9-5ubuntu0.9 amd64 Tag Image File Format library (TIFF), development files, current version
+ii libtiff5:amd64 4.0.9-5ubuntu0.9 amd64 Tag Image File Format (TIFF) library
+ii libtiff5-dev:amd64 4.0.9-5ubuntu0.9 amd64 Tag Image File Format library (TIFF), development files
+ii libtiffxx5:amd64 4.0.9-5ubuntu0.9 amd64 Tag Image File Format (TIFF) library -- C++ interface
-ii linux-libc-dev:amd64 4.15.0-197.208 amd64 Linux Kernel Headers for development
+ii linux-libc-dev:amd64 4.15.0-200.211 amd64 Linux Kernel Headers for development
-ii ubuntu-advantage-tools 27.11.3~18.04.1 amd64 management tools for Ubuntu Advantage
+ii ubuntu-advantage-tools 27.12~18.04.1 amd64 management tools for Ubuntu Pro