SUSE-SU-2022:2647-1

Опубликовано: 03 авг. 2022

Источник: suse-cvrf

Описание

Security update for tiff

This update for tiff fixes the following issues:

CVE-2022-2056: Fixed a division by zero denial of service (bsc#1201176).
CVE-2022-2057: Fixed a division by zero denial of service (bsc#1201175).
CVE-2022-2058: Fixed a division by zero denial of service (bsc#1201174).

Список пакетов

Container suse/nginx:latest

libtiff5-4.0.9-150000.45.11.1

Container suse/rmt-nginx:latest

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAPCAL-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAPCAL-EC2-HVM

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAPCAL-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-EC2-HVM

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP2-SAP-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAP-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAP-BYOS-EC2-HVM

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAP-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAPCAL-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAPCAL-EC2-HVM

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP3-SAPCAL-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-Hardened-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-Hardened-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-Hardened-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-Hardened-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAP-Hardened-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAPCAL

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAPCAL-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAPCAL-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SAPCAL-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-Hardened-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-Hardened-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-Hardened-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure-3P

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAP-Hardened-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAPCAL-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAPCAL-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP5-SAPCAL-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Azure-LI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Azure-LI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-BYOS

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-BYOS-Azure

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-BYOS-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-BYOS-GCE

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-EC2

libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP6-SAP-Hardened-GCE

libtiff5-4.0.9-150000.45.11.1

SUSE Linux Enterprise Micro 5.2

libtiff5-4.0.9-150000.45.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP3

libtiff-devel-4.0.9-150000.45.11.1

libtiff5-4.0.9-150000.45.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP4

libtiff-devel-4.0.9-150000.45.11.1

libtiff5-4.0.9-150000.45.11.1

libtiff5-32bit-4.0.9-150000.45.11.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP3

libtiff5-32bit-4.0.9-150000.45.11.1

SUSE Linux Enterprise Module for Package Hub 15 SP3

libtiff5-32bit-4.0.9-150000.45.11.1

tiff-4.0.9-150000.45.11.1

SUSE Linux Enterprise Module for Package Hub 15 SP4

tiff-4.0.9-150000.45.11.1

openSUSE Leap 15.3

libtiff-devel-4.0.9-150000.45.11.1

libtiff-devel-32bit-4.0.9-150000.45.11.1

libtiff5-4.0.9-150000.45.11.1

libtiff5-32bit-4.0.9-150000.45.11.1

tiff-4.0.9-150000.45.11.1

openSUSE Leap 15.4

libtiff-devel-4.0.9-150000.45.11.1

libtiff-devel-32bit-4.0.9-150000.45.11.1

libtiff5-4.0.9-150000.45.11.1

libtiff5-32bit-4.0.9-150000.45.11.1

tiff-4.0.9-150000.45.11.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20222647-1/
Link for SUSE-SU-2022:2647-1
https://lists.suse.com/pipermail/sle-security-updates/2022-August/011757.html
E-Mail link for SUSE-SU-2022:2647-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1201174
SUSE Bug 1201174
https://bugzilla.suse.com/1201175
SUSE Bug 1201175
https://bugzilla.suse.com/1201176
SUSE Bug 1201176
https://www.suse.com/security/cve/CVE-2022-2056/
SUSE CVE CVE-2022-2056 page
https://www.suse.com/security/cve/CVE-2022-2057/
SUSE CVE CVE-2022-2057 page
https://www.suse.com/security/cve/CVE-2022-2058/
SUSE CVE CVE-2022-2058 page

Описание

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

Затронутые продукты

Container suse/nginx:latest:libtiff5-4.0.9-150000.45.11.1

Container suse/rmt-nginx:latest:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-2056.html
CVE-2022-2056
https://bugzilla.suse.com/1201176
SUSE Bug 1201176

Описание

Затронутые продукты

Container suse/nginx:latest:libtiff5-4.0.9-150000.45.11.1

Container suse/rmt-nginx:latest:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-2057.html
CVE-2022-2057
https://bugzilla.suse.com/1201175
SUSE Bug 1201175

Описание

Затронутые продукты

Container suse/nginx:latest:libtiff5-4.0.9-150000.45.11.1

Container suse/rmt-nginx:latest:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libtiff5-4.0.9-150000.45.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-2058.html
CVE-2022-2058
https://bugzilla.suse.com/1201174
SUSE Bug 1201174
https://bugzilla.suse.com/1201175
SUSE Bug 1201175
https://bugzilla.suse.com/1201176
SUSE Bug 1201176