☰LibTiff Mailing List Archive

2008.08.29 22:53 "[Tiff] Some security fixes from RHEL", by Even Rouault

2008.08.30 02:08 "Re: [Tiff] Some security fixes from RHEL", by Tom Lane
- 2008.09.01 22:18 "Re: [Tiff] libtiff security", by Dmitry V. Levin
2008.08.31 15:17 "Re: [Tiff] Some security fixes from RHEL", by Frank Warmerdam
- 2008.08.31 15:38 "Re: [Tiff] Some security fixes from RHEL", by Bob Friesenhahn
2008.09.03 08:03 "Re: [Tiff] Some security fixes from RHEL", by Andrey Kiselev
- 2008.09.04 20:48 "Re: [Tiff] beta2 release - lfind() problem on Win64", by Edward Lam
  - 2008.09.05 06:18 "Re: [Tiff] beta2 release - lfind() problem on Win64", by Andrey Kiselev
    - 2008.09.04 20:06 "[Tiff] tiffsplit.c broken on Windows in trunk", by Edward Lam
      - 2008.09.04 20:41 "Re: [Tiff] tiffsplit.c broken on Windows in trunk", by Toby Thain
        2008.09.04 21:13 "Re: [Tiff] tiffsplit.c broken on Windows in trunk", by Edward Lam
      - 2008.09.05 06:42 "[Tiff] Re: tiffsplit.c broken on Windows in trunk", by Andrey Kiselev
    - 2008.09.05 13:09 "Re: [Tiff] beta2 release - lfind() problem on Win64", by Edward Lam
2008.09.03 21:01 "Re: [Tiff] Some security fixes from RHEL", by Lee Howard
- 2008.09.03 18:13 "Re: [Tiff] Some security fixes from RHEL", by Lee Howard
  - 2008.09.03 18:43 "Re: [Tiff] Some security fixes from RHEL", by Bob Friesenhahn
  - 2008.09.03 20:47 "Re: [Tiff] Some security fixes from RHEL", by Edward Lam
2008.09.03 21:59 "Re: [Tiff] Some security fixes from RHEL", by Even Rouault

2008.08.31 22:21 "Re: [Tiff] Some security fixes from RHEL", by Bob Friesenhahn

I don't think that a full security audit is being requested. Rather, I think that the original poster is simply asking that these things be addressed as they are reported.

There has not been a refusal to address the issue but there is no commitment yet as to when (and if) a replacement for 3.8.2 would become available. The 3.9.0beta package is currently not binary compatible with libtiff 3.8.2. Libtiff 4.0.0 is still on the horizon as well.

Bob
======================================
Bob Friesenhahn
bfriesen@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maintainer, http://www.GraphicsMagick.org/