Oval Definition:	oval:org.opensuse.security:def:58954
Revision Date: 2020-12-01 Version: 1 Title: Security update for tiff (Important) Description: This update for tiff to version 4.0.9 fixes the following issues: Security issues fixed: - CVE-2014-8128: Fix out-of-bounds read with malformed TIFF image in multiple tools (bsc#969783). - CVE-2015-7554: Fix invalid write in tiffsplit / _TIFFVGetField (bsc#960341). - CVE-2016-10095: Fix stack-based buffer overflow in _TIFFVGetField (tif_dir.c) (bsc#1017690). - CVE-2016-5318: Fix stackoverflow in thumbnail (bsc#983436). - CVE-2017-16232: Fix memory-based DoS in tiff2bw (bsc#1069213). Family: unix Class: patch Status: Reference(s): 1017690 1028842 1062063 1066644 1069213 1071459 1071460 1084632 1101820 1106119 1109663 1109847 1122293 1122299 1123371 1123377 1123378 1131060 1132728 1132729 1132732 1134297 1136446 1137597 1137825 1138459 1139073 1140747 1141035 1154043 1155988 1168874 1168994 1173812 1174463 1174570 1175626 1175656 1176756 1177872 960341 969783 983436 CVE-2010-1205 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2013-6954 CVE-2014-0333 CVE-2014-8128 CVE-2014-9495 CVE-2015-0973 CVE-2015-7554 CVE-2015-8126 CVE-2016-10087 CVE-2016-10095 CVE-2016-5318 CVE-2017-16232 CVE-2017-16548 CVE-2017-17433 CVE-2017-17434 CVE-2018-1000802 CVE-2018-10903 CVE-2018-11212 CVE-2018-14647 CVE-2018-16890 CVE-2019-10160 CVE-2019-11135 CVE-2019-11139 CVE-2019-11477 CVE-2019-11478 CVE-2019-12387 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-3822 CVE-2019-3823 CVE-2019-3846 CVE-2019-3880 CVE-2020-10713 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15683 CVE-2020-15706 CVE-2020-15707 CVE-2020-15969 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 SUSE-SU-2018:0073-1 SUSE-SU-2018:0118-1 SUSE-SU-2018:3553-1 SUSE-SU-2019:0249-1 SUSE-SU-2019:0604-1 SUSE-SU-2019:1392-1 SUSE-SU-2019:1948-1 SUSE-SU-2019:2053-1 SUSE-SU-2019:2066-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:2076-1 SUSE-SU-2020:2628-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information python3-3.6.5-lp150.1 is installed OR python3-curses-3.6.5-lp150.1 is installed OR python3-dbm-3.6.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information graphviz-2.40.1-lp151.6.3 is installed OR graphviz-addons-2.40.1-lp151.6.3 is installed OR graphviz-devel-2.40.1-lp151.6.3 is installed OR graphviz-doc-2.40.1-lp151.6.3 is installed OR graphviz-gd-2.40.1-lp151.6.3 is installed OR graphviz-gnome-2.40.1-lp151.6.3 is installed OR graphviz-guile-2.40.1-lp151.6.3 is installed OR graphviz-gvedit-2.40.1-lp151.6.3 is installed OR graphviz-java-2.40.1-lp151.6.3 is installed OR graphviz-lua-2.40.1-lp151.6.3 is installed OR graphviz-perl-2.40.1-lp151.6.3 is installed OR graphviz-php-2.40.1-lp151.6.3 is installed OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed OR graphviz-python-2.40.1-lp151.6.3 is installed OR graphviz-ruby-2.40.1-lp151.6.3 is installed OR graphviz-smyrna-2.40.1-lp151.6.3 is installed OR graphviz-tcl-2.40.1-lp151.6.3 is installed OR libgraphviz6-2.40.1-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libtiff5-4.0.9-44.7 is installed OR libtiff5-32bit-4.0.9-44.7 is installed OR tiff-4.0.9-44.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND shim-15+git47-22.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.32 is installed OR samba-4.2.4-28.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpng16-16-1.6.8-14 is installed OR libpng16-16-32bit-1.6.8-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-68.3.0-109.98 is installed OR MozillaFirefox-translations-common-68.3.0-109.98 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-cryptography-2.0.3-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed
BACK