Oval Definition:
oval:org.opensuse.security:def:85103
Revision Date
:
2018-01-12
Version
:
1
Title
:
Security update for tiff (Important)
Description
:
This update for tiff to version 4.0.9 fixes the following issues:
Security issues fixed:
- CVE-2014-8128: Fix out-of-bounds read with malformed TIFF image in multiple tools (bsc#969783). - CVE-2015-7554: Fix invalid write in tiffsplit / _TIFFVGetField (bsc#960341). - CVE-2016-10095: Fix stack-based buffer overflow in _TIFFVGetField (tif_dir.c) (bsc#1017690). - CVE-2016-5318: Fix stackoverflow in thumbnail (bsc#983436). - CVE-2017-16232: Fix memory-based DoS in tiff2bw (bsc#1069213).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1017690
1069213
960341
969783
983436
CVE-2014-8128
CVE-2015-7554
CVE-2016-10095
CVE-2016-5318
CVE-2017-16232
SUSE-SU-2018:0073-1
Platform(s)
:
SUSE Linux Enterprise Server 12 SP3
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed
AND
Package Information
libtiff5-4.0.9-44.7.1 is installed
OR
libtiff5-32bit-4.0.9-44.7.1 is installed
OR
tiff-4.0.9-44.7.1 is installed
BACK