Oval Definition:	oval:org.opensuse.security:def:500
Revision Date: 2022-05-30 Version: 1 Title: Security update for tiff (Important) Description: This update for tiff fixes the following issues: - CVE-2022-0561: Fixed null source pointer passed as an argument to memcpy() within TIFFFetchStripThing() in tif_dirread.c (bsc#1195964). - CVE-2022-0562: Fixed null source pointer passed as an argument to memcpy() within TIFFReadDirectory() in tif_dirread.c (bsc#1195965). - CVE-2022-0865: Fixed assertion failure in TIFFReadAndRealloc (bsc#1197066). - CVE-2022-0909: Fixed divide by zero error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197072). - CVE-2022-0924: Fixed out-of-bounds read error in tiffcp that could have led to a denial-of-service via a crafted tiff file (bsc#1197073). - CVE-2022-0908: Fixed null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() (bsc#1197074). - CVE-2022-1056: Fixed out-of-bounds read error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197631). - CVE-2022-0891: Fixed heap buffer overflow in extractImageSection (bsc#1197068). Family: unix Class: patch Status: Reference(s): 1195964 1195965 1197066 1197068 1197072 1197073 1197074 1197631 CVE-2008-1420 CVE-2008-1420 CVE-2009-3379 CVE-2009-3379 CVE-2012-0444 CVE-2012-0444 CVE-2017-14160 CVE-2017-14160 CVE-2017-14632 CVE-2017-14632 CVE-2017-14633 CVE-2017-14633 CVE-2018-10392 CVE-2018-10392 CVE-2018-10393 CVE-2018-10393 CVE-2018-5146 CVE-2018-5146 CVE-2022-0561 CVE-2022-0562 CVE-2022-0865 CVE-2022-0891 CVE-2022-0908 CVE-2022-0909 CVE-2022-0924 CVE-2022-1056 SUSE-SU-2022:1882-1 Platform(s): openSUSE 13.1 openSUSE Leap 15.4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0 Product(s): Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information libtiff-devel-4.0.9-150000.45.8.1 is installed OR libtiff-devel-32bit-4.0.9-150000.45.8.1 is installed OR libtiff5-4.0.9-150000.45.8.1 is installed OR libtiff5-32bit-4.0.9-150000.45.8.1 is installed OR tiff-4.0.9-150000.45.8.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND xinetd-2.3.15-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information alsa-1.0.27.2-11.10 is installed OR libasound2-1.0.27.2-11.10 is installed OR libasound2-32bit-1.0.27.2-11.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libvorbis-devel-1.3.6-4.3.1 is installed OR libvorbis0-1.3.6-4.3.1 is installed OR libvorbisenc2-1.3.6-4.3.1 is installed OR libvorbisfile3-1.3.6-4.3.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libvorbis-devel-1.3.6-4.3 is installed OR libvorbis0-1.3.6-4.3 is installed OR libvorbisenc2-1.3.6-4.3 is installed OR libvorbisfile3-1.3.6-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavcodec57-3.4.2-4.12 is installed OR libavutil-devel-3.4.2-4.12 is installed OR libavutil55-3.4.2-4.12 is installed OR libpostproc-devel-3.4.2-4.12 is installed OR libpostproc54-3.4.2-4.12 is installed OR libswresample-devel-3.4.2-4.12 is installed OR libswresample2-3.4.2-4.12 is installed OR libswscale-devel-3.4.2-4.12 is installed OR libswscale4-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND python3-pywbem-0.11.0-2 is installed
BACK