Oval Definition:oval:org.opensuse.security:def:51571
Revision Date:2022-11-28Version:1
Title:Security update for tiff (Important)
Description:

This update for tiff fixes the following issues:

- CVE-2022-3597: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204641). - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c (bnc#1204643). - CVE-2022-3626: Fixed out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c (bnc#1204644) - CVE-2022-3627: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204645). - CVE-2022-3970: Fixed unsigned integer overflow in TIFFReadRGBATileExt() (bnc#1205392).
Family:unixClass:patch
Status:Reference(s):1005023
1012382
1031392
1045723
1051510
1055120
1061840
1065600
1065729
1071995
1074701
1076696
1080919
1082519
1083548
1085030
1085235
1085308
1087078
1087082
1089761
1090078
1090944
1091677
1093753
1094244
1094912
1098782
1100394
1101040
1101591
1101669
1101688
1101689
1102495
1102640
1102908
1103269
1103405
1103587
1103636
1104888
1105031
1105190
1105412
1105795
1106105
1106240
1106279
1106948
1107640
1107783
1107829
1107928
1107941
1107947
1108096
1108170
1108281
1108323
1108399
1108823
1109197
1109244
1109252
1109333
1109336
1109337
1109603
1109806
1109859
1109979
1109992
1110006
1110301
1110363
1110445
1110639
1110642
1110643
1110644
1110645
1110646
1110647
1110649
1110650
1111498
1111666
1112024
1112178
1113083
1113632
1113665
1113956
1114135
1114933
1117063
1119971
1120163
1120323
1133021
1144333
1152148
1153666
1160790
1161088
1161089
1161670
1163524
1165629
1166965
1169679
1169748
1169790
1170232
1171441
1171443
1171444
1171445
1171446
1171447
1171474
1171688
1171988
1172073
1172108
1172247
1172418
1172428
1172781
1172782
1172783
1172871
1172872
1172873
1172963
1173247
1173485
1173605
1173786
1173798
1173954
1174003
1174010
1174026
1174070
1174161
1174200
1174205
1174387
1174484
1174547
1174549
1174550
1174625
1174658
1174685
1174689
1174699
1174734
1174757
1174771
1174840
1174841
1174843
1174844
1174845
1174852
1174873
1174887
1174904
1174926
1174968
1175062
1175063
1175064
1175065
1175066
1175067
1175112
1175127
1175128
1175149
1175199
1175213
1175223
1175228
1175232
1175284
1175393
1175394
1175396
1175397
1175398
1175399
1175400
1175401
1175402
1175403
1175404
1175405
1175406
1175407
1175408
1175409
1175410
1175411
1175412
1175413
1175414
1175415
1175416
1175417
1175418
1175419
1175420
1175421
1175422
1175423
1175440
1175493
1175515
1175518
1175526
1175550
1175654
1175666
1175667
1175668
1175669
1175670
1175767
1175768
1175769
1175770
1175771
1175772
1175786
1175873
1177513
1177729
1184710
1184952
1186235
1204641
1204643
1204644
1204645
1205392
991901
CVE-2007-6720
CVE-2009-0179
CVE-2009-2473
CVE-2009-2474
CVE-2009-3995
CVE-2009-3996
CVE-2010-2546
CVE-2012-1616
CVE-2012-4510
CVE-2013-6473
CVE-2013-6474
CVE-2013-6475
CVE-2013-6476
CVE-2014-2707
CVE-2014-4336
CVE-2014-4337
CVE-2014-4338
CVE-2015-2265
CVE-2015-3258
CVE-2015-3279
CVE-2015-8327
CVE-2015-8560
CVE-2018-1000656
CVE-2018-1333
CVE-2018-14633
CVE-2018-15686
CVE-2018-15688
CVE-2018-16864
CVE-2018-16865
CVE-2018-16866
CVE-2018-17182
CVE-2018-6954
CVE-2018-8011
CVE-2019-14857
CVE-2019-16785
CVE-2019-16786
CVE-2019-16789
CVE-2019-16792
CVE-2020-10135
CVE-2020-11017
CVE-2020-11018
CVE-2020-11019
CVE-2020-11038
CVE-2020-11039
CVE-2020-11040
CVE-2020-11041
CVE-2020-11043
CVE-2020-11085
CVE-2020-11086
CVE-2020-11087
CVE-2020-11088
CVE-2020-11089
CVE-2020-11095
CVE-2020-11096
CVE-2020-11097
CVE-2020-11098
CVE-2020-11099
CVE-2020-11521
CVE-2020-11522
CVE-2020-11523
CVE-2020-11524
CVE-2020-11525
CVE-2020-11526
CVE-2020-12351
CVE-2020-13396
CVE-2020-13397
CVE-2020-13398
CVE-2020-14314
CVE-2020-14331
CVE-2020-14356
CVE-2020-16166
CVE-2020-1749
CVE-2020-24394
CVE-2020-25645
CVE-2020-36322
CVE-2020-4030
CVE-2020-4031
CVE-2020-4032
CVE-2020-4033
CVE-2020-7068
CVE-2021-29154
CVE-2022-3597
CVE-2022-3599
CVE-2022-3626
CVE-2022-3627
CVE-2022-3970
SUSE-SU-2018:2424-1
SUSE-SU-2018:3159-1
SUSE-SU-2018:3644-1
SUSE-SU-2019:0137-1
SUSE-SU-2019:0657-1
SUSE-SU-2019:2934-1
SUSE-SU-2020:2032-1
SUSE-SU-2020:2455-1
SUSE-SU-2020:2541-1
SUSE-SU-2020:3269-1
SUSE-SU-2021:1865-1
SUSE-SU-2022:4259-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap Micro 5.3
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • plasma5-desktop-5.12.5-lp150.2 is installed
  • OR plasma5-desktop-lang-5.12.5-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap Micro 5.3 is installed
  • AND libtiff5-4.0.9-150000.45.19.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libQtWebKit4-4.6.3-5.32 is installed
  • OR libQtWebKit4-32bit-4.6.3-5.32 is installed
  • OR libqt4-4.6.3-5.32 is installed
  • OR libqt4-32bit-4.6.3-5.32 is installed
  • OR libqt4-qt3support-4.6.3-5.32 is installed
  • OR libqt4-qt3support-32bit-4.6.3-5.32 is installed
  • OR libqt4-sql-4.6.3-5.32 is installed
  • OR libqt4-sql-32bit-4.6.3-5.32 is installed
  • OR libqt4-sql-mysql-4.6.3-5.32 is installed
  • OR libqt4-sql-mysql-32bit-4.6.3-5.32 is installed
  • OR libqt4-sql-postgresql-4.6.3-5.32 is installed
  • OR libqt4-sql-postgresql-32bit-4.6.3-5.32 is installed
  • OR libqt4-sql-sqlite-4.6.3-5.32 is installed
  • OR libqt4-sql-sqlite-32bit-4.6.3-5.32 is installed
  • OR libqt4-sql-unixODBC-4.6.3-5.32 is installed
  • OR libqt4-sql-unixODBC-32bit-4.6.3-5.32 is installed
  • OR libqt4-x11-4.6.3-5.32 is installed
  • OR libqt4-x11-32bit-4.6.3-5.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-38.5.0esr-28 is installed
  • OR MozillaFirefox-translations-38.5.0esr-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND libneon27-0.30.0-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libmikmod3-3.2.0-4 is installed
  • OR libmikmod3-32bit-3.2.0-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND argyllcms-1.6.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • augeas-1.2.0-15 is installed
  • OR augeas-lenses-1.2.0-15 is installed
  • OR libaugeas0-1.2.0-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gstreamer-0_10-plugins-good-0.10.31-16 is installed
  • OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • python-Flask-0.12.4-3.3 is installed
  • OR python2-Flask-0.12.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • php7-7.2.5-4.61 is installed
  • OR php7-embed-7.2.5-4.61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_37-default-7-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_10-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libsystemd0-mini-234-24.15 is installed
  • OR libudev-mini-devel-234-24.15 is installed
  • OR libudev-mini1-234-24.15 is installed
  • OR nss-myhostname-234-24.15 is installed
  • OR nss-mymachines-234-24.15 is installed
  • OR nss-systemd-234-24.15 is installed
  • OR systemd-234-24.15 is installed
  • OR systemd-logger-234-24.15 is installed
  • OR systemd-mini-234-24.15 is installed
  • OR systemd-mini-bash-completion-234-24.15 is installed
  • OR systemd-mini-container-mini-234-24.15 is installed
  • OR systemd-mini-coredump-mini-234-24.15 is installed
  • OR systemd-mini-devel-234-24.15 is installed
  • OR systemd-mini-sysvinit-234-24.15 is installed
  • OR udev-mini-234-24.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.41 is installed
  • OR kernel-azure-base-4.12.14-8.41 is installed
  • OR kernel-azure-devel-4.12.14-8.41 is installed
  • OR kernel-devel-azure-4.12.14-8.41 is installed
  • OR kernel-source-azure-4.12.14-8.41 is installed
  • OR kernel-syms-azure-4.12.14-8.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • apache2-2.4.33-3.3 is installed
  • OR apache2-devel-2.4.33-3.3 is installed
  • OR apache2-doc-2.4.33-3.3 is installed
  • OR apache2-prefork-2.4.33-3.3 is installed
  • OR apache2-utils-2.4.33-3.3 is installed
  • OR apache2-worker-2.4.33-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND apache2-mod_auth_openidc-2.3.8-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_48-default-6-2 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-6-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.17 is installed
  • OR git-core-2.12.3-27.17 is installed
  • OR git-doc-2.12.3-27.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_53-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.131-26 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.131-26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.4.1-109.101 is installed
  • OR MozillaFirefox-translations-common-68.4.1-109.101 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libfreebl3-3.47.1-58.34 is installed
  • OR libfreebl3-32bit-3.47.1-58.34 is installed
  • OR libfreebl3-hmac-3.47.1-58.34 is installed
  • OR libfreebl3-hmac-32bit-3.47.1-58.34 is installed
  • OR libsoftokn3-3.47.1-58.34 is installed
  • OR libsoftokn3-32bit-3.47.1-58.34 is installed
  • OR libsoftokn3-hmac-3.47.1-58.34 is installed
  • OR libsoftokn3-hmac-32bit-3.47.1-58.34 is installed
  • OR mozilla-nspr-4.23-19.12 is installed
  • OR mozilla-nspr-32bit-4.23-19.12 is installed
  • OR mozilla-nspr-devel-4.23-19.12 is installed
  • OR mozilla-nss-3.47.1-58.34 is installed
  • OR mozilla-nss-32bit-3.47.1-58.34 is installed
  • OR mozilla-nss-certs-3.47.1-58.34 is installed
  • OR mozilla-nss-certs-32bit-3.47.1-58.34 is installed
  • OR mozilla-nss-devel-3.47.1-58.34 is installed
  • OR mozilla-nss-sysinit-3.47.1-58.34 is installed
  • OR mozilla-nss-sysinit-32bit-3.47.1-58.34 is installed
  • OR mozilla-nss-tools-3.47.1-58.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libkpathsea6-6.2.0dev-22.3 is installed
  • OR texlive-2013.20130620-22.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • coreutils-8.25-13.7 is installed
  • OR coreutils-lang-8.25-13.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • python-waitress-1.4.3-3.3 is installed
  • OR python3-waitress-1.4.3-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND kgraft-patch-4_4_180-94_135-default-7-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.22 is installed
  • OR kernel-default-extra-4.12.14-25.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • freerdp-2.1.2-10.15 is installed
  • OR freerdp-devel-2.1.2-10.15 is installed
  • OR libfreerdp2-2.1.2-10.15 is installed
  • OR libwinpr2-2.1.2-10.15 is installed
  • OR winpr2-devel-2.1.2-10.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • glibc-2.19-40.6 is installed
  • OR glibc-32bit-2.19-40.6 is installed
  • OR glibc-devel-2.19-40.6 is installed
  • OR glibc-devel-32bit-2.19-40.6 is installed
  • OR glibc-html-2.19-40.6 is installed
  • OR glibc-i18ndata-2.19-40.6 is installed
  • OR glibc-info-2.19-40.6 is installed
  • OR glibc-locale-2.19-40.6 is installed
  • OR glibc-locale-32bit-2.19-40.6 is installed
  • OR glibc-profile-2.19-40.6 is installed
  • OR glibc-profile-32bit-2.19-40.6 is installed
  • OR nscd-2.19-40.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.6 is installed
  • OR dnsmasq-utils-2.78-18.6 is installed
    • BACK