Описание
ELSA-2012-1590: libtiff security update (MODERATE)
[3.9.4-9]
- Still more fixes to make test case for CVE-2012-5581 work on all platforms Resolves: #885310
[3.9.4-8]
- Fix incomplete patch for CVE-2012-3401
- Add libtiff-tiffinfo-exif.patch so that our test case for CVE-2012-5581 works with pre-4.0.2 libtiff Resolves: #885310
[3.9.4-7]
- Add fixes for CVE-2012-3401, CVE-2012-4447, CVE-2012-4564, CVE-2012-5581 Resolves: #885310
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
libtiff
3.8.2-18.el5_8
libtiff-devel
3.8.2-18.el5_8
Oracle Linux x86_64
libtiff
3.8.2-18.el5_8
libtiff-devel
3.8.2-18.el5_8
Oracle Linux i386
libtiff
3.8.2-18.el5_8
libtiff-devel
3.8.2-18.el5_8
Oracle Linux 6
Oracle Linux x86_64
libtiff
3.9.4-9.el6_3
libtiff-devel
3.9.4-9.el6_3
libtiff-static
3.9.4-9.el6_3
Oracle Linux i686
libtiff
3.9.4-9.el6_3
libtiff-devel
3.9.4-9.el6_3
libtiff-static
3.9.4-9.el6_3
Связанные CVE
Связанные уязвимости
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 a ...