| Revision Date: | 2022-05-30 | Version: | 1 |
| Title: | Security update for tiff (Important) |
| Description: |
This update for tiff fixes the following issues:
- CVE-2022-0561: Fixed null source pointer passed as an argument to memcpy() within TIFFFetchStripThing() in tif_dirread.c (bsc#1195964). - CVE-2022-0562: Fixed null source pointer passed as an argument to memcpy() within TIFFReadDirectory() in tif_dirread.c (bsc#1195965). - CVE-2022-0865: Fixed assertion failure in TIFFReadAndRealloc (bsc#1197066). - CVE-2022-0909: Fixed divide by zero error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197072). - CVE-2022-0924: Fixed out-of-bounds read error in tiffcp that could have led to a denial-of-service via a crafted tiff file (bsc#1197073). - CVE-2022-0908: Fixed null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() (bsc#1197074). - CVE-2022-1056: Fixed out-of-bounds read error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197631). - CVE-2022-0891: Fixed heap buffer overflow in extractImageSection (bsc#1197068).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1043990
1055117
1065729
1152457
1152489
1155518
1156395
1167260
1167574
1168838
1174416
1174426
1175995
1178089
1179243
1179851
1180846
1181161
1182613
1183063
1183203
1183289
1184208
1184209
1184436
1184485
1184514
1184585
1184650
1184724
1184728
1184730
1184731
1184736
1184737
1184738
1184740
1184741
1184742
1184760
1184811
1184893
1184934
1184942
1184957
1184969
1184984
1185041
1185113
1185233
1185244
1185269
1185365
1185454
1185472
1185491
1185549
1185586
1185587
1195964
1195965
1197066
1197068
1197072
1197073
1197074
1197631
CVE-2021-29155
CVE-2021-29650
CVE-2022-0561
CVE-2022-0562
CVE-2022-0865
CVE-2022-0891
CVE-2022-0908
CVE-2022-0909
CVE-2022-0924
CVE-2022-1056
SUSE-SU-2022:1882-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise Module for Basesystem 15 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.3
| Product(s): | |
| Definition Synopsis |
| Release Information SUSE Linux Enterprise Desktop 15 SP4 is installed
OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
OR SUSE Linux Enterprise Server 15 SP4 is installed
OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
OR SUSE Manager Proxy 4.3 is installed
OR SUSE Manager Retail Branch Server 4.3 is installed
OR SUSE Manager Server 4.3 is installed
AND Package Information
libtiff-devel-4.0.9-150000.45.8.1 is installed
OR libtiff5-4.0.9-150000.45.8.1 is installed
OR libtiff5-32bit-4.0.9-150000.45.8.1 is installed
|