Oval Definition:oval:org.opensuse.security:def:904
Revision Date:2022-05-30Version:1
Title:Security update for tiff (Important)
Description:

This update for tiff fixes the following issues:

- CVE-2022-0561: Fixed null source pointer passed as an argument to memcpy() within TIFFFetchStripThing() in tif_dirread.c (bsc#1195964). - CVE-2022-0562: Fixed null source pointer passed as an argument to memcpy() within TIFFReadDirectory() in tif_dirread.c (bsc#1195965). - CVE-2022-0865: Fixed assertion failure in TIFFReadAndRealloc (bsc#1197066). - CVE-2022-0909: Fixed divide by zero error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197072). - CVE-2022-0924: Fixed out-of-bounds read error in tiffcp that could have led to a denial-of-service via a crafted tiff file (bsc#1197073). - CVE-2022-0908: Fixed null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() (bsc#1197074). - CVE-2022-1056: Fixed out-of-bounds read error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197631). - CVE-2022-0891: Fixed heap buffer overflow in extractImageSection (bsc#1197068).
Family:unixClass:patch
Status:Reference(s):1195964
1195965
1197066
1197068
1197072
1197073
1197074
1197631
CVE-2010-3430
CVE-2010-3430
CVE-2010-3431
CVE-2010-3431
CVE-2010-3853
CVE-2010-3853
CVE-2011-3148
CVE-2011-3148
CVE-2011-3149
CVE-2011-3149
CVE-2014-2583
CVE-2014-2583
CVE-2015-3238
CVE-2015-3238
CVE-2017-7524
CVE-2018-17953
CVE-2018-17953
CVE-2022-0561
CVE-2022-0562
CVE-2022-0865
CVE-2022-0891
CVE-2022-0908
CVE-2022-0909
CVE-2022-0924
CVE-2022-1056
SUSE-SU-2022:1882-1
Platform(s):openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR bash-lang-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND clamav-0.98.7-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND iputils-s20121221-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND tpm2.0-tools-4.1-1.57 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • libtiff-devel-4.0.9-150000.45.8.1 is installed
  • OR libtiff5-4.0.9-150000.45.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-25.3 is installed
  • OR dlm-kmp-default-4.12.14-25.3 is installed
  • OR gfs2-kmp-default-4.12.14-25.3 is installed
  • OR kernel-default-4.12.14-25.3 is installed
  • OR ocfs2-kmp-default-4.12.14-25.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.12 is installed
  • OR libavdevice57-3.4.2-4.12 is installed
  • OR libavfilter6-3.4.2-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND tpm2.0-tools-4.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-perl-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND pam-devel-32bit-1.3.0-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-3.8 is installed
  • OR libopenssl1_0_0-1.0.2p-3.8 is installed
  • OR openssl-1_0_0-1.0.2p-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND kernel-livepatch-tools-1.1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libopenssl-1_1-devel-32bit-1.1.0i-4.24 is installed
  • OR openssl-1_1-1.1.0i-4.24 is installed
  • OR openssl-1_1-doc-1.1.0i-4.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • dpdk-17.11.2-3.2 is installed
  • OR dpdk-devel-17.11.2-3.2 is installed
  • OR dpdk-kmp-default-17.11.2_k4.12.14_23-3.2 is installed
  • OR dpdk-thunderx-17.11.2-3.2 is installed
  • OR dpdk-thunderx-devel-17.11.2-3.2 is installed
  • OR dpdk-thunderx-kmp-default-17.11.2_k4.12.14_23-3.2 is installed
  • OR dpdk-tools-17.11.2-3.2 is installed
  • OR libdpdk-17_11-0-17.11.2-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.9 is installed
  • OR php7-7.2.5-4.9 is installed
  • OR php7-bcmath-7.2.5-4.9 is installed
  • OR php7-bz2-7.2.5-4.9 is installed
  • OR php7-calendar-7.2.5-4.9 is installed
  • OR php7-ctype-7.2.5-4.9 is installed
  • OR php7-curl-7.2.5-4.9 is installed
  • OR php7-dba-7.2.5-4.9 is installed
  • OR php7-devel-7.2.5-4.9 is installed
  • OR php7-dom-7.2.5-4.9 is installed
  • OR php7-enchant-7.2.5-4.9 is installed
  • OR php7-exif-7.2.5-4.9 is installed
  • OR php7-fastcgi-7.2.5-4.9 is installed
  • OR php7-fileinfo-7.2.5-4.9 is installed
  • OR php7-fpm-7.2.5-4.9 is installed
  • OR php7-ftp-7.2.5-4.9 is installed
  • OR php7-gd-7.2.5-4.9 is installed
  • OR php7-gettext-7.2.5-4.9 is installed
  • OR php7-gmp-7.2.5-4.9 is installed
  • OR php7-iconv-7.2.5-4.9 is installed
  • OR php7-intl-7.2.5-4.9 is installed
  • OR php7-json-7.2.5-4.9 is installed
  • OR php7-ldap-7.2.5-4.9 is installed
  • OR php7-mbstring-7.2.5-4.9 is installed
  • OR php7-mysql-7.2.5-4.9 is installed
  • OR php7-odbc-7.2.5-4.9 is installed
  • OR php7-opcache-7.2.5-4.9 is installed
  • OR php7-openssl-7.2.5-4.9 is installed
  • OR php7-pcntl-7.2.5-4.9 is installed
  • OR php7-pdo-7.2.5-4.9 is installed
  • OR php7-pear-7.2.5-4.9 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.9 is installed
  • OR php7-pgsql-7.2.5-4.9 is installed
  • OR php7-phar-7.2.5-4.9 is installed
  • OR php7-posix-7.2.5-4.9 is installed
  • OR php7-shmop-7.2.5-4.9 is installed
  • OR php7-snmp-7.2.5-4.9 is installed
  • OR php7-soap-7.2.5-4.9 is installed
  • OR php7-sockets-7.2.5-4.9 is installed
  • OR php7-sqlite-7.2.5-4.9 is installed
  • OR php7-sysvmsg-7.2.5-4.9 is installed
  • OR php7-sysvsem-7.2.5-4.9 is installed
  • OR php7-sysvshm-7.2.5-4.9 is installed
  • OR php7-tokenizer-7.2.5-4.9 is installed
  • OR php7-wddx-7.2.5-4.9 is installed
  • OR php7-xmlreader-7.2.5-4.9 is installed
  • OR php7-xmlrpc-7.2.5-4.9 is installed
  • OR php7-xmlwriter-7.2.5-4.9 is installed
  • OR php7-xsl-7.2.5-4.9 is installed
  • OR php7-zip-7.2.5-4.9 is installed
  • OR php7-zlib-7.2.5-4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • libXrandr2-1.4.2-3.56 is installed
  • OR libXrandr2-32bit-1.4.2-3.56 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXext6-1.3.2-3.61 is installed
  • OR libXext6-32bit-1.3.2-3.61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.13 is installed
  • OR kernel-default-extra-4.12.14-25.13 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • irssi-0.8.20-9 is installed
  • OR irssi-devel-0.8.20-9 is installed
    • BACK