Описание
ELSA-2019-2053: libtiff security update (MODERATE)
[4.0.3-32]
- Fix one more Covscan defect
- Related: #1647965
[4.0.3-31]
- Fix processing of RAS files without colormap
- Related: #1647965
[4.0.3-30]
- Fix various Covscan defects
- Related: #1647965
[4.0.3-29]
- Fix compiler warning introduced by patch for CVE-2018-18661
- Related: #1647965
[4.0.3-28]
- Fix CVE-2016-3186
- Resolves: #1319503
- Fix CVE-2018-7456
- Resolves: #1561318
- Fix CVE-2018-8905
- Resolves: #1574548
- Fix CVE-2018-10779
- Resolves: #1598503
- Fix CVE-2018-10963
- Resolves: #1598726
- Fix CVE-2018-12900
- Resolves: #1600430
- Fix CVE-2018-17100
- Resolves: #1632578
- Fix CVE-2018-17101
- Resolves: #1632579
- Fix CVE-2018-18557
- Resolves: #1647737
- Fix CVE-2018-18661
- Resolves: #1647965
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libtiff
4.0.3-32.el7
libtiff-devel
4.0.3-32.el7
libtiff-static
4.0.3-32.el7
libtiff-tools
4.0.3-32.el7
Oracle Linux x86_64
libtiff
4.0.3-32.el7
libtiff-devel
4.0.3-32.el7
libtiff-static
4.0.3-32.el7
libtiff-tools
4.0.3-32.el7
Ссылки на источники
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 7 лет назад
TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff.
CVSS3: 5.3
redhat
почти 8 лет назад
TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff.
CVSS3: 6.5
nvd
больше 7 лет назад
TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff.