new

2012-03-30 16:30:34 +00:00 · 2012-03-30 16:30:34 +00:00 · 97a32305c9
commit 97a32305c9
parent 7e03e5ccbd
1 changed files with 17 additions and 0 deletions
--- a/17
+++ b/17
@ -0,0 +1,17 @@
+LibTIFF Security Issue Handling
+===============================
+
+Libtiff can be a significant security risk as many tools use it to read
+TIFF files which can come from hostile sources.  Thus buffer overflows
+and other security holes in libtiff put many users at risk.  To that end
+we try to deal with security problems fairly quickly and to provide advance
+notice to various interested parties to role out security fixes before they
+go out in a standard release. 
+
+This document is new and will presumably evolve.
+
+1) The mailing list distro@vs.openwall.org can be used to notify folks
+at various linux OS distributions as well as the BSD folks about problems
+in libtiff. 
+
+... to be continued ...