2008.08.29 22:53 "[Tiff] Some security fixes from RHEL", by Even Rouault

2008.09.06 01:20 "Re: [Tiff] Some security fixes from RHEL", by Jay Berkenbilt

My impression was 3.9 was supposed to be a stopgap with important fixes while 4.0 had some more time to shake out any remaining issues with BigTIFF.

I am not currently aware of any remaining issues related to BigTIFF in 4.0. If there are any known, please report them to the libtiff bug tracker.

I assume that Debian is doing its part and testing the libtiff 4.0.0 pre-releases with various key applications to make sure that there are no libtiff interface issues before it is too late to elegantly fix them.

I didn't realize there had been any since the alpha release a long time ago. I can package prereleases of tiff 4.0.0 for debian experimental and would be happy to do so.

--Jay (debian tiff maintainer)

(I haven't been following this thread closely.)