Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2016:2525-1

Опубликовано: 13 окт. 2016
Источник: suse-cvrf

Описание

Security update for tiff

This update for tiff fixes the following security issues:

  • CVE-2016-3622: Specially crafted TIFF images could trigger a crash in tiff2rgba (bsc#974449)
  • Various out-of-bound write vulnerabilities with unspecified impact (MSVR 35093, MSVR 35094, MSVR 35095, MSVR 35096, MSVR 35097, MSVR 35098)
  • CVE-2016-3623: Specially crafted TIFF images could trigger a crash in rgb2ycbcr (bsc#974618)
  • CVE-2016-3945: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution via tiff2rgba (bsc#974614)
  • CVE-2016-3990: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution (bsc#975069)
  • CVE-2016-3991: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution via the tiffcrop tool (bsc#975070)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.1
libtiff-devel-4.0.6-9.1
libtiff-devel-32bit-4.0.6-9.1
libtiff5-4.0.6-9.1
libtiff5-32bit-4.0.6-9.1
tiff-4.0.6-9.1

Ссылки

Описание

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

Затронутые продукты
openSUSE Leap 42.1:libtiff-devel-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff-devel-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-4.0.6-9.1
Ссылки

Описание

The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.

Затронутые продукты
openSUSE Leap 42.1:libtiff-devel-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff-devel-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-4.0.6-9.1
Ссылки

Описание

Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile functions in the tiff2rgba tool in LibTIFF 4.0.6 and earlier, when -b mode is enabled, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image, which triggers an out-of-bounds write.

Затронутые продукты
openSUSE Leap 42.1:libtiff-devel-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff-devel-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-4.0.6-9.1
Ссылки

Описание

Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image to tiffcp.

Затронутые продукты
openSUSE Leap 42.1:libtiff-devel-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff-devel-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-4.0.6-9.1
Ссылки

Описание

Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image with zero tiles.

Затронутые продукты
openSUSE Leap 42.1:libtiff-devel-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff-devel-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-32bit-4.0.6-9.1
openSUSE Leap 42.1:libtiff5-4.0.6-9.1
Ссылки
Уязвимость openSUSE-SU-2016:2525-1