tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf

Debian Bug report logs - #866109
tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf

Date: Tue, 27 Jun 2017 14:18:14 +0200

Source: tiff
Version: 4.0.8-2
Severity: grave
Tags: upstream security
Forwarded: http://bugzilla.maptools.org/show_bug.cgi?id=2704

Hi,

the following vulnerability was published for tiff, using severity
grave for now since I'm not sure code execution can be ruled out.

CVE-2017-9935[0]:
| In LibTIFF 4.0.8, there is a heap-based buffer overflow in the
| t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could
| lead to different damages. For example, a crafted TIFF document can
| lead to an out-of-bounds read in TIFFCleanup, an invalid free in
| TIFFClose or t2p_free, memory corruption in t2p_readwrite_pdf_image, or
| a double free in t2p_free. Given these possibilities, it probably could
| cause arbitrary code execution.

In the upstream bugtracker the reporter has provided his reproducers
which can be used later on to verfiy a fix as well with the given
testcases.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-9935
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935
[1] http://bugzilla.maptools.org/show_bug.cgi?id=2704

Please adjust the affected versions in the BTS as needed, specifically
no checks have been done yet for older versions than 4.0.8-2.

Regards,
Salvatore

Message #10 received at 866109@bugs.debian.org (full text, mbox, reply):

From: Salvatore Bonaccorso <carnil@debian.org>

To: 866109@bugs.debian.org

Subject: Re: Bug#866109: tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf

Date: Tue, 27 Jun 2017 14:30:06 +0200

FTR, I still opted for grave for now even though the issue seems only
located in the tools, not in the library. Please correct me though if
I'm wrong.

We might adjust that later, but should for sure be fixed in unstable
once a fix is available.

Regards,
Salvatore

Message #17 received at 866109-close@bugs.debian.org (full text, mbox, reply):

From: Laszlo Boszormenyi (GCS) <gcs@debian.org>

To: 866109-close@bugs.debian.org

Subject: Bug#866109: fixed in tiff 4.0.9-2

Date: Thu, 21 Dec 2017 16:37:32 +0000

Source: tiff
Source-Version: 4.0.9-2

We believe that the bug you reported is fixed in the latest version of
tiff, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 866109@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laszlo Boszormenyi (GCS) <gcs@debian.org> (supplier of updated tiff package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 15 Dec 2017 17:45:42 +0000
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: source amd64 all
Version: 4.0.9-2
Distribution: unstable
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Description:
 libtiff-dev - Tag Image File Format library (TIFF), development files, current
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Closes: 866109
Changes:
 tiff (4.0.9-2) unstable; urgency=high
 .
   * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf()
     function  (closes: #866109).
   * Update debhelper level to 11 .
   * Update Standards-Version to 4.1.2 .
Checksums-Sha1:
 099310eee1fa57092462ef2e75039dc583423054 2184 tiff_4.0.9-2.dsc
 aa2ed83b38238be1b570758b3dda4cdfd3eff28d 18020 tiff_4.0.9-2.debian.tar.xz
 2a6ff45c1a2f4d8120d7c02fd9cac8b958730ed5 96124 libtiff-dev_4.0.9-2_amd64.deb
 2b5ab20f1117ae495ca6df244a87c9637805c676 403092 libtiff-doc_4.0.9-2_all.deb
 4d1ac77de084578b7f5116352cb494aa51e839d7 14312 libtiff-opengl-dbgsym_4.0.9-2_amd64.deb
 721f4a5673fc033799b8ffda4e4d88c0b6f56d8b 104692 libtiff-opengl_4.0.9-2_amd64.deb
 ddd8cc86db89b47ee40e97cfb25d6a254f5bbda7 352396 libtiff-tools-dbgsym_4.0.9-2_amd64.deb
 551109d704e4b40939f1a0693ab2c685a9197a1d 286760 libtiff-tools_4.0.9-2_amd64.deb
 c0702078f27d687804ff4d5bcdf606979313876b 376192 libtiff5-dbgsym_4.0.9-2_amd64.deb
 3a9c27948d6f4dce4d30e0f66b0b9e2c33879abe 366648 libtiff5-dev_4.0.9-2_amd64.deb
 a8147cd8086314b51ddd02529d0fe1aca7b7af68 245124 libtiff5_4.0.9-2_amd64.deb
 79db89a8a684c5f68865c50ff1017e3bf30b237d 21096 libtiffxx5-dbgsym_4.0.9-2_amd64.deb
 a93e101cf857f3b2eb23e275b9358a605b797d8f 99808 libtiffxx5_4.0.9-2_amd64.deb
 2e20ca99a05ee47354a3cf772181630afbd0483e 11917 tiff_4.0.9-2_amd64.buildinfo
Checksums-Sha256:
 92f18a33fe226c434778ff805bb4b5dcb3c1dbc30bb6f62069c19a110fa6453a 2184 tiff_4.0.9-2.dsc
 59b0617a304c166cf123a8c33c8a5b287890b753125dbf04aa5c22a322d1fa80 18020 tiff_4.0.9-2.debian.tar.xz
 9a98169be6f6dcffab99eaa06b57c6c24e90481fc3f5aa4bbc2838eb2ce75afe 96124 libtiff-dev_4.0.9-2_amd64.deb
 bb6709b3d04d81ead8b0ea958fac1fe36f2a433a4133980748b760dee25e6fae 403092 libtiff-doc_4.0.9-2_all.deb
 f675200f3b52c3863d2282712cfb22a4c7947dc9088119576821e6ec62cb85b6 14312 libtiff-opengl-dbgsym_4.0.9-2_amd64.deb
 7a009a18962d67dd56a2821d5689569a81546942c0d46c771890cf08003293a2 104692 libtiff-opengl_4.0.9-2_amd64.deb
 15ddca78a1474019a110a73f095bb7060a7f717e24f150e50c2014a0d342b057 352396 libtiff-tools-dbgsym_4.0.9-2_amd64.deb
 a647c949c09aabcbb65d568e616910c64085b0f125fbf62ecb78ceb71f30b1ab 286760 libtiff-tools_4.0.9-2_amd64.deb
 db23890c885e7ce33fbfa9e417653c3a743b407ea3697d288a2c4c89d4b2be4a 376192 libtiff5-dbgsym_4.0.9-2_amd64.deb
 904b7fc88ab31f56d5537a2bf3107653fa6a618ec966132417c8f3b31a0680a5 366648 libtiff5-dev_4.0.9-2_amd64.deb
 9e92d71294b6b484b93daa26e0055824c2d65d76b14ee787b650289855287990 245124 libtiff5_4.0.9-2_amd64.deb
 c64dfecf80ed5c804288019a0d5e8a6ab7650cb1ab8bac39bfbce2ff2cec5f35 21096 libtiffxx5-dbgsym_4.0.9-2_amd64.deb
 97dbb4233cf08839cd7cfbba0fd05547b4cc8fcd192a67f768c4909cc03abc22 99808 libtiffxx5_4.0.9-2_amd64.deb
 33114207bfe6c17cebfdb6e716518d380270d5b008718f10a5ec8ef2800b8dc1 11917 tiff_4.0.9-2_amd64.buildinfo
Files:
 ab7a38af96ab79e21e83e6b8fca67382 2184 libs optional tiff_4.0.9-2.dsc
 34be5eae52e2edba92135f3d91c85ea7 18020 libs optional tiff_4.0.9-2.debian.tar.xz
 ef77401ed17ab7673c9aa99244fc0386 96124 oldlibs optional libtiff-dev_4.0.9-2_amd64.deb
 fbec089414e9e335d3849fd3b9658445 403092 doc optional libtiff-doc_4.0.9-2_all.deb
 f877127ebbb4eab008448d0c14f4216a 14312 debug optional libtiff-opengl-dbgsym_4.0.9-2_amd64.deb
 18b1040aa4773a2fd8d0ab4d166d88de 104692 graphics optional libtiff-opengl_4.0.9-2_amd64.deb
 ecd0f2007e502919ad97a18eaf2e0f39 352396 debug optional libtiff-tools-dbgsym_4.0.9-2_amd64.deb
 8b6e4f1514d8d24d2d14f45719d49f69 286760 graphics optional libtiff-tools_4.0.9-2_amd64.deb
 dd85aac73aef5c85fd101285eb5b8d13 376192 debug optional libtiff5-dbgsym_4.0.9-2_amd64.deb
 2dcc1116ea161a57dfe5feb10e022b5c 366648 libdevel optional libtiff5-dev_4.0.9-2_amd64.deb
 58680ed6c323a72fc0cc85bc54c8e60f 245124 libs optional libtiff5_4.0.9-2_amd64.deb
 366945f0a52692d9b52c13e3b60482de 21096 debug optional libtiffxx5-dbgsym_4.0.9-2_amd64.deb
 f819686c899dc7751aac3b86cbd50dd5 99808 libs optional libtiffxx5_4.0.9-2_amd64.deb
 1546b7d71d286d78f0ea94455253b7f9 11917 libs optional tiff_4.0.9-2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=rd5o
-----END PGP SIGNATURE-----

Message #22 received at 866109-close@bugs.debian.org (full text, mbox, reply):

From: Laszlo Boszormenyi (GCS) <gcs@debian.org>

To: 866109-close@bugs.debian.org

Subject: Bug#866109: fixed in tiff 4.0.8-2+deb9u2

Date: Fri, 09 Feb 2018 23:49:08 +0000

Source: tiff
Source-Version: 4.0.8-2+deb9u2

We believe that the bug you reported is fixed in the latest version of
tiff, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 866109@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laszlo Boszormenyi (GCS) <gcs@debian.org> (supplier of updated tiff package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 30 Dec 2017 20:13:06 +0000
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: source all amd64
Version: 4.0.8-2+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Description:
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Closes: 866109 868513 872607 873879 873880 885985
Changes:
 tiff (4.0.8-2+deb9u2) stretch-security; urgency=high
 .
   * Fix CVE-2017-11335: heap based buffer write overflow in tiff2pdf
     (closes: #868513).
   * Fix CVE-2017-12944: OOM prevention in TIFFReadDirEntryArray()
     (closes: #872607).
   * Fix CVE-2017-13726: reachable assertion abort in TIFFWriteDirectorySec()
     (closes: #873880).
   * Fix CVE-2017-13727: reachable assertion abort in
     TIFFWriteDirectoryTagSubifd() (closes: #873879).
   * Fix CVE-2017-18013: NULL pointer dereference in TIFFPrintDirectory()
     (closes: #885985).
   * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf()
     function (closes: #866109).
Checksums-Sha1:
 7b8e353320028667b6d5320533d7ab6ed0974868 2185 tiff_4.0.8-2+deb9u2.dsc
 34dfd38e29ab6c66d21ca7e4a388088b6e0e4b40 26252 tiff_4.0.8-2+deb9u2.debian.tar.xz
 9000bc577b99dcbdc8ef5dde806c2adeb78d744a 395746 libtiff-doc_4.0.8-2+deb9u2_all.deb
 70f0e4fab28528f4ff8cd8e3bb7fa7a98c68b6ae 14182 libtiff-opengl-dbgsym_4.0.8-2+deb9u2_amd64.deb
 92c052e7a85e13273f363cee870c6d9dcb21cc2b 100320 libtiff-opengl_4.0.8-2+deb9u2_amd64.deb
 84a4b3be06f2fda59ee153e72d6f9d7a80371003 351868 libtiff-tools-dbgsym_4.0.8-2+deb9u2_amd64.deb
 c60b3176d060515d76b827f5806d68e6863f6929 281122 libtiff-tools_4.0.8-2+deb9u2_amd64.deb
 c7a996fa1cb99d3d2c3259a3e08d743ea2b978a5 371778 libtiff5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 3615c374e61717f9bf2a8cd1dd5dd9e498abfbd8 360454 libtiff5-dev_4.0.8-2+deb9u2_amd64.deb
 1b34836762c411b2c264426a12c0fbf035bdc419 237814 libtiff5_4.0.8-2+deb9u2_amd64.deb
 6f3ac50cb436bd5a6497dcc14fb3c32b8c64f498 21044 libtiffxx5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 2269dab18fd163950c0d19792a3f1a24b0b37f3d 95620 libtiffxx5_4.0.8-2+deb9u2_amd64.deb
 1e1f9cb575406ae5667bdda9229639d90a98b29d 10659 tiff_4.0.8-2+deb9u2_amd64.buildinfo
Checksums-Sha256:
 b64056af722ac8826486c5361bce5e832347da02a7f7f5664d92c57b5b816ddf 2185 tiff_4.0.8-2+deb9u2.dsc
 25fc9acaa503e454e40050a4fb6bca69bdce0f3d5eec5a08d8abe29b4f9584d9 26252 tiff_4.0.8-2+deb9u2.debian.tar.xz
 ddba77d3a9e0d193a13e57bda811edd02ee551d46be697103aba3d8099e474af 395746 libtiff-doc_4.0.8-2+deb9u2_all.deb
 0c346f50f1e0340fd2fbdcf7914be058c23ce762f9d0258b85ff6385a9f997a0 14182 libtiff-opengl-dbgsym_4.0.8-2+deb9u2_amd64.deb
 87fbae83f470b92101df10aa984d71d9c5fce5c6da1a4a29bacea64ab6bd0414 100320 libtiff-opengl_4.0.8-2+deb9u2_amd64.deb
 f6ace11f2dc10b47cbc789f200d68d7532ec217f56e15f6b07cb8cde99bfb42c 351868 libtiff-tools-dbgsym_4.0.8-2+deb9u2_amd64.deb
 c68bb945d982edab0ca706d08f92516e92c1b1903c25d313d65080719acb4293 281122 libtiff-tools_4.0.8-2+deb9u2_amd64.deb
 c9b1b912f965bf6c0a18e13b1aa1aa451eb1d824c5aeb2d08bfb55f759157fa0 371778 libtiff5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 50f0c22b0de9c9ed5186b7b6b5273e29438180683fab6016ec10f30995e297c9 360454 libtiff5-dev_4.0.8-2+deb9u2_amd64.deb
 f07cf814bd48e50467aa31c70d67a19c1c1ff43a6c85f685c99bb7589348b74d 237814 libtiff5_4.0.8-2+deb9u2_amd64.deb
 b52d73ca7ae7df2a69d3895b05a6eace541e6aef41936b3445811e64092b4ae1 21044 libtiffxx5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 daff2a977c2c900913d78649cdb747ee16888ffb3ca479dfac47a7f0b519f4f1 95620 libtiffxx5_4.0.8-2+deb9u2_amd64.deb
 0daef45061fadcc87411fabe80b057d5146cc308379604a8526a4c0e9d99be78 10659 tiff_4.0.8-2+deb9u2_amd64.buildinfo
Files:
 1c6352ae88a3bd5e084bb4fdf533dd10 2185 libs optional tiff_4.0.8-2+deb9u2.dsc
 8a0484a21612098e9738bb15e563443f 26252 libs optional tiff_4.0.8-2+deb9u2.debian.tar.xz
 bd81dc15d542df10d803cb08a0582cd4 395746 doc optional libtiff-doc_4.0.8-2+deb9u2_all.deb
 93a223ddbb8c8156e00a48837a8c39f9 14182 debug extra libtiff-opengl-dbgsym_4.0.8-2+deb9u2_amd64.deb
 773216be66c54198706ae898d1024e96 100320 graphics optional libtiff-opengl_4.0.8-2+deb9u2_amd64.deb
 5a02365ff38e954142b4f63f82aafb27 351868 debug extra libtiff-tools-dbgsym_4.0.8-2+deb9u2_amd64.deb
 6ed2b2e46bd249fb458140dd8bd70054 281122 graphics optional libtiff-tools_4.0.8-2+deb9u2_amd64.deb
 74c12049f1d056c889ca8b8ff6fc4030 371778 debug extra libtiff5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 31778ea681d7f5ea2d97ceae9b0291f9 360454 libdevel optional libtiff5-dev_4.0.8-2+deb9u2_amd64.deb
 dce21b072092d5565de8a4933a3741de 237814 libs optional libtiff5_4.0.8-2+deb9u2_amd64.deb
 1c7042a6a764d3b301008756260bcd2b 21044 debug extra libtiffxx5-dbgsym_4.0.8-2+deb9u2_amd64.deb
 1cfa6d7209474d5f632200b11b82eaad 95620 libs optional libtiffxx5_4.0.8-2+deb9u2_amd64.deb
 238e426d0391aa6eee7215257b091a69 10659 libs optional tiff_4.0.8-2+deb9u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=iy1i
-----END PGP SIGNATURE-----

Message #27 received at 866109-close@bugs.debian.org (full text, mbox, reply):

From: Moritz Muehlenhoff <jmm@debian.org>

To: 866109-close@bugs.debian.org

Subject: Bug#866109: fixed in tiff 4.0.3-12.3+deb8u5

Date: Sat, 10 Feb 2018 21:09:40 +0000

Source: tiff
Source-Version: 4.0.3-12.3+deb8u5

We believe that the bug you reported is fixed in the latest version of
tiff, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 866109@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Moritz Muehlenhoff <jmm@debian.org> (supplier of updated tiff package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 26 Jan 2018 20:53:45 +0000
Source: tiff
Binary: libtiff5 libtiffxx5 libtiff5-dev libtiff-tools libtiff-opengl libtiff-doc
Architecture: source all amd64
Version: 4.0.3-12.3+deb8u5
Distribution: jessie-security
Urgency: high
Maintainer: Ondřej Surý <ondrej@debian.org>
Changed-By: Moritz Muehlenhoff <jmm@debian.org>
Description:
 libtiff-doc - TIFF manipulation and conversion documentation
 libtiff-opengl - TIFF manipulation and conversion tools
 libtiff-tools - TIFF manipulation and conversion tools
 libtiff5   - Tag Image File Format (TIFF) library
 libtiff5-dev - Tag Image File Format library (TIFF), development files
 libtiffxx5 - Tag Image File Format (TIFF) library -- C++ interface
Closes: 866109 868513 872607 873879 873880 885985
Changes:
 tiff (4.0.3-12.3+deb8u5) jessie-security; urgency=high
 .
   [ Laszlo Boszormenyi (GCS) ]
   * Fix CVE-2017-11335: heap based buffer write overflow in tiff2pdf
     (closes: #868513).
   * Fix CVE-2017-12944: OOM prevention in TIFFReadDirEntryArray()
     (closes: #872607).
   * Fix CVE-2017-13726: reachable assertion abort in TIFFWriteDirectorySec()
     (closes: #873880).
   * Fix CVE-2017-13727: reachable assertion abort in
     TIFFWriteDirectoryTagSubifd() (closes: #873879).
   * Fix CVE-2017-18013: NULL pointer dereference in TIFFPrintDirectory()
     (closes: #885985).
   * Fix CVE-2017-9935: heap-based buffer overflow in the t2p_write_pdf()
     function (closes: #866109).
 .
   [ Moritz Muehlenhoff ]
   * CVE-2016-10371
Checksums-Sha1:
 5286070ac9dad8f79a58dce68a6f5d5a5709a43a 2240 tiff_4.0.3-12.3+deb8u5.dsc
 3b5963a07b791621522bb9864ef59d9cd2c41296 63224 tiff_4.0.3-12.3+deb8u5.debian.tar.xz
 2f2b14c7d1d8d381fcdd8158cf1ab3a1c31ae519 370430 libtiff-doc_4.0.3-12.3+deb8u5_all.deb
 c3427c5d04e4ed47bcafa2b7a3c59e1fa90295e3 221468 libtiff5_4.0.3-12.3+deb8u5_amd64.deb
 785743a2a3392106c8095442a518d45d74a313d7 80930 libtiffxx5_4.0.3-12.3+deb8u5_amd64.deb
 b4559d4bb6582933deb0a0e906cfc54eeaba7f2d 343556 libtiff5-dev_4.0.3-12.3+deb8u5_amd64.deb
 ed40c22817692b79a05dd5d2420aa132a8a8f571 274274 libtiff-tools_4.0.3-12.3+deb8u5_amd64.deb
 81db38b5f8ba38422716eeacfd6da919b1bf08a8 85868 libtiff-opengl_4.0.3-12.3+deb8u5_amd64.deb
Checksums-Sha256:
 69fe805e2304bc369b2200636988cb7bd5d38f6e0daf9ad0eaaf96ffaea8d464 2240 tiff_4.0.3-12.3+deb8u5.dsc
 d43190b75bb70c05701afc8c061f49c75433b5d9965fd57df68e334195b267c4 63224 tiff_4.0.3-12.3+deb8u5.debian.tar.xz
 46dda733fe0b9206c41cfd11b1aaa823bbcf971c5300edaabc976ff17cb16609 370430 libtiff-doc_4.0.3-12.3+deb8u5_all.deb
 2bdb12e49dd579e1ad8f27c709efff9ed2578560b235ec964ffba82459423834 221468 libtiff5_4.0.3-12.3+deb8u5_amd64.deb
 bfe0fb6f79fae2901b5b12d0cd68b6598528f2e01585e96eb053ce0a97c6a4ca 80930 libtiffxx5_4.0.3-12.3+deb8u5_amd64.deb
 c2609f6341939315cbbfdf6c4d7ccaeb2372002763ccc6ec94299d518fad7b95 343556 libtiff5-dev_4.0.3-12.3+deb8u5_amd64.deb
 5af7bea70a18bbcfd98ee0b78c1c687fd6d855a69daa3d4a1eea7dabdf6fb777 274274 libtiff-tools_4.0.3-12.3+deb8u5_amd64.deb
 4f627fb090becf70f3c94ca9305b52db93645603fa6c9406236202969bb624f6 85868 libtiff-opengl_4.0.3-12.3+deb8u5_amd64.deb
Files:
 10f0251f4045702e0880d89b54df8568 2240 libs optional tiff_4.0.3-12.3+deb8u5.dsc
 17d67f197d3f6b8e45081f3f2c2ef67d 63224 libs optional tiff_4.0.3-12.3+deb8u5.debian.tar.xz
 f5fdd9aba64b15b8d1155e34e70a2e5c 370430 doc optional libtiff-doc_4.0.3-12.3+deb8u5_all.deb
 5ebd46638fd112f5ef610d6cf2ed6234 221468 libs optional libtiff5_4.0.3-12.3+deb8u5_amd64.deb
 b6b610757f2ef0226da8cae5774b6ae5 80930 libs optional libtiffxx5_4.0.3-12.3+deb8u5_amd64.deb
 6d6f84d18cf1e20178dd1e7d9d07add6 343556 libdevel optional libtiff5-dev_4.0.3-12.3+deb8u5_amd64.deb
 92a9a989d700fe995da70fa3d9618fe7 274274 graphics optional libtiff-tools_4.0.3-12.3+deb8u5_amd64.deb
 9aa51919e9edc1edd7bce248084f2822 85868 graphics optional libtiff-opengl_4.0.3-12.3+deb8u5_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=n2QL
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.