Oval Definition:	oval:org.opensuse.security:def:51966
Revision Date: 2022-11-28 Version: 1 Title: Security update for tiff (Important) Description: This update for tiff fixes the following issues: - CVE-2022-3597: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204641). - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c (bnc#1204643). - CVE-2022-3626: Fixed out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c (bnc#1204644) - CVE-2022-3627: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204645). - CVE-2022-3970: Fixed unsigned integer overflow in TIFFReadRGBATileExt() (bnc#1205392). Family: unix Class: patch Status: Reference(s): 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1055186 1061840 1064802 1065600 1066129 1073513 1082635 1083647 1086323 1087092 1089644 1090631 1093205 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1109158 1111666 1112178 1113994 1114279 1117665 1119461 1119465 1123034 1123080 1133140 1134209 1134303 1135642 1135854 1135873 1135967 1137040 1137799 1137861 1138190 1139073 1140090 1140290 1140729 1140845 1140883 1141600 1142635 1142667 1143706 1144338 1144375 1144449 1144903 1145099 1146612 1146657 1148410 1149119 1149853 1150452 1150457 1150465 1150875 1151508 1151807 1152033 1152624 1152665 1152685 1152696 1152697 1152788 1152790 1152791 1153112 1153158 1153236 1153263 1153476 1153509 1153607 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154242 1154268 1154354 1154372 1154521 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1154956 1155061 1155178 1155179 1155184 1155186 1155671 1160968 1163102 1163103 1163104 1169511 1171352 1171550 1172277 1175596 1176733 1177472 1178428 1186489 1204641 1204643 1204644 1204645 1205392 802154 814594 919448 987367 998153 CVE-2009-0696 CVE-2009-3939 CVE-2009-4022 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2010-1146 CVE-2010-1436 CVE-2010-1641 CVE-2010-2066 CVE-2010-2942 CVE-2010-2947 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2011-0414 CVE-2011-0712 CVE-2011-1020 CVE-2011-1577 CVE-2011-1907 CVE-2011-1910 CVE-2011-2203 CVE-2011-2464 CVE-2011-4313 CVE-2012-0056 CVE-2012-1667 CVE-2012-2673 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-5166 CVE-2012-5688 CVE-2012-5689 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-1987 CVE-2013-2002 CVE-2013-2005 CVE-2013-2266 CVE-2013-2850 CVE-2013-4312 CVE-2013-4854 CVE-2014-0038 CVE-2014-00691 CVE-2014-0196 CVE-2014-0591 CVE-2014-3675 CVE-2014-3676 CVE-2014-3677 CVE-2014-5044 CVE-2014-8500 CVE-2015-1349 CVE-2015-1350 CVE-2015-4620 CVE-2015-5276 CVE-2015-5477 CVE-2015-5722 CVE-2015-7833 CVE-2015-7884 CVE-2015-7885 CVE-2015-8709 CVE-2015-8812 CVE-2015-8964 CVE-2016-0617 CVE-2016-0723 CVE-2016-0728 CVE-2016-0758 CVE-2016-10200 CVE-2016-1237 CVE-2016-1583 CVE-2016-2117 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2383 CVE-2016-2384 CVE-2016-2847 CVE-2016-3134 CVE-2016-3135 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3713 CVE-2016-3951 CVE-2016-4470 CVE-2016-4482 CVE-2016-4486 CVE-2016-4557 CVE-2016-4558 CVE-2016-4569 CVE-2016-4578 CVE-2016-4794 CVE-2016-4805 CVE-2016-4951 CVE-2016-4997 CVE-2016-4998 CVE-2016-5195 CVE-2016-5244 CVE-2016-5412 CVE-2016-5696 CVE-2016-5828 CVE-2016-5829 CVE-2016-6197 CVE-2016-6480 CVE-2016-6828 CVE-2016-7039 CVE-2016-7042 CVE-2016-7097 CVE-2016-7117 CVE-2016-7425 CVE-2016-7913 CVE-2016-7917 CVE-2016-7949 CVE-2016-7950 CVE-2016-8632 CVE-2016-8636 CVE-2016-8645 CVE-2016-8655 CVE-2016-8658 CVE-2016-8666 CVE-2016-9083 CVE-2016-9084 CVE-2016-9191 CVE-2016-9555 CVE-2016-9576 CVE-2016-9793 CVE-2016-9794 CVE-2016-9806 CVE-2016-9919 CVE-2017-1000364 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-2583 CVE-2017-2584 CVE-2017-2596 CVE-2017-2636 CVE-2017-2671 CVE-2017-5551 CVE-2017-5576 CVE-2017-5577 CVE-2017-5897 CVE-2017-5970 CVE-2017-5986 CVE-2017-6074 CVE-2017-6214 CVE-2017-6345 CVE-2017-6346 CVE-2017-6347 CVE-2017-6353 CVE-2017-7184 CVE-2017-7187 CVE-2017-7261 CVE-2017-7294 CVE-2017-7308 CVE-2017-7346 CVE-2017-7374 CVE-2017-7487 CVE-2017-7518 CVE-2017-7616 CVE-2017-7618 CVE-2017-8890 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9150 CVE-2017-9242 CVE-2018-12207 CVE-2019-10086 CVE-2019-10220 CVE-2019-11135 CVE-2019-13173 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-2949 CVE-2020-13249 CVE-2020-14765 CVE-2020-14776 CVE-2020-14789 CVE-2020-14812 CVE-2020-15180 CVE-2020-26117 CVE-2020-2654 CVE-2020-2752 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2760 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2812 CVE-2020-2814 CVE-2020-2830 CVE-2021-33574 CVE-2022-3597 CVE-2022-3599 CVE-2022-3626 CVE-2022-3627 CVE-2022-3970 SUSE-SU-2019:2055-1 SUSE-SU-2019:2245-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:1711-1 SUSE-SU-2020:2882-1 SUSE-SU-2020:3500-1 SUSE-SU-2021:3290-1 SUSE-SU-2022:4259-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information eog-3.26.2-lp150.3 is installed OR eog-lang-3.26.2-lp150.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libvirt-0.9.6-0.21 is installed OR libvirt-client-0.9.6-0.21 is installed OR libvirt-client-32bit-0.9.6-0.21 is installed OR libvirt-doc-0.9.6-0.21 is installed OR libvirt-python-0.9.6-0.21 is installed OR virt-manager-0.9.0-3.19 is installed OR vm-install-0.5.10-0.5 is installed OR xen-4.1.2_20-0.5 is installed OR xen-doc-html-4.1.2_20-0.5 is installed OR xen-doc-pdf-4.1.2_20-0.5 is installed OR xen-kmp-default-4.1.2_20_3.0.38_0.5-0.5 is installed OR xen-kmp-trace-4.1.2_20_3.0.38_0.5-0.5 is installed OR xen-libs-4.1.2_20-0.5 is installed OR xen-libs-32bit-4.1.2_20-0.5 is installed OR xen-tools-4.1.2_20-0.5 is installed OR xen-tools-domU-4.1.2_20-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND vorbis-tools-1.1.1-174 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bind-libs-9.9.6P1-30 is installed OR bind-libs-32bit-9.9.6P1-30 is installed OR bind-utils-9.9.6P1-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information kernel-default-4.4.73-5 is installed OR kernel-default-devel-4.4.73-5 is installed OR kernel-default-extra-4.4.73-5 is installed OR kernel-devel-4.4.73-5 is installed OR kernel-macros-4.4.73-5 is installed OR kernel-source-4.4.73-5 is installed OR kernel-syms-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Micro 5.3 is installed AND libtiff5-4.0.9-150000.45.19.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-4.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libmysqld-devel-10.2.32-3.29 is installed OR libmysqld19-10.2.32-3.29 is installed OR mariadb-10.2.32-3.29 is installed OR mariadb-client-10.2.32-3.29 is installed OR mariadb-errormessages-10.2.32-3.29 is installed OR mariadb-tools-10.2.32-3.29 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libmariadb-devel-3.1.11-3.22 is installed OR libmariadb_plugins-3.1.11-3.22 is installed OR mariadb-connector-c-3.1.11-3.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND librpcsecgss3-0.19-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-10-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND davfs2-1.5.2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_143-94_47-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information glibc-2.22-114.15.1 is installed OR glibc-32bit-2.22-114.15.1 is installed OR glibc-devel-2.22-114.15.1 is installed OR glibc-devel-32bit-2.22-114.15.1 is installed OR glibc-html-2.22-114.15.1 is installed OR glibc-i18ndata-2.22-114.15.1 is installed OR glibc-info-2.22-114.15.1 is installed OR glibc-locale-2.22-114.15.1 is installed OR glibc-locale-32bit-2.22-114.15.1 is installed OR glibc-profile-2.22-114.15.1 is installed OR glibc-profile-32bit-2.22-114.15.1 is installed OR nscd-2.22-114.15.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libXvnc1-1.8.0-13.14 is installed OR tigervnc-1.8.0-13.14 is installed OR xorg-x11-Xvnc-1.8.0-13.14 is installed OR xorg-x11-Xvnc-novnc-1.8.0-13.14 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND apache2-mod_wsgi-4.4.13-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql96-9.6.10-3.22 is installed OR postgresql96-contrib-9.6.10-3.22 is installed OR postgresql96-docs-9.6.10-3.22 is installed OR postgresql96-libs-9.6.10-3.22 is installed OR postgresql96-server-9.6.10-3.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-haml-4.0.6-3.3 is installed OR rubygem-haml-4.0.6-3.3 is installed
BACK