Download
| Alert*
oval:org.secpod.oval:def:507470
The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: * LibTiff: DoS from Divide By Zero Error * libtiff: Double free or corruption in rotateImage function at tiffcrop.c * libtiff: tiffcrop: heap-buffer-overflow in extractImageSection i ... oval:org.secpod.oval:def:19500002 There is a double free or corruption in rotateImage at tiffcrop.c:8839 found in libtiff 4.4.0rc1. A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted input. It was found in libtiff 4.4.0rc1 th ... oval:org.secpod.oval:def:507449 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: * LibTiff: DoS from Divide By Zero Error * libtiff: Double free or corruption in rotateImage function at tiffcrop.c * libtiff: uint32_t underflow leads to out of bounds read and writ ... oval:org.secpod.oval:def:1506350 [4.0.9-26] - Fix various CVEs - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 CVE-2022-2953 [4.0.9-25] - Fix CVE-2022-2867 - Fix CVE-2022-2868 - Fix CVE-2022-2869 [4.0.9-24] - Fix CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 - Resolves: #2103222 oval:org.secpod.oval:def:1506369 [4.4.0-5] - Bump release - Resolves: CVE-2022-2953 [4.4.0-4] - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 [4.4.0-3] - Fix CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 - Resolves: #2106768 oval:org.secpod.oval:def:3300647 SUSE Security Update: Security update for tiff oval:org.secpod.oval:def:4501182 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: * LibTiff: DoS from Divide By Zero Error * libtiff: Double free or corruption in rotateImage function at tiffcrop.c * libtiff: uint32_t underflow leads to out of bounds read and writ ... oval:org.secpod.oval:def:5800025 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: * LibTiff: DoS from Divide By Zero Error * libtiff: Double free or corruption in rotateImage function at tiffcrop.c * libtiff: tiffcrop: heap-buffer-overflow in extractImageSection i ... oval:org.secpod.oval:def:2600133 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. oval:org.secpod.oval:def:2500913 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. oval:org.secpod.oval:def:89047708 This update for tiff fixes the following issues: - CVE-2022-2519: Fixed a double free in rotateImage . - CVE-2022-2520: Fixed a assertion failure in rotateImage . - CVE-2022-2521: Fixed invalid free in TIFFClose . - CVE-2022-2867: Fixed out of bounds read and write in tiffcrop.c . - CVE-2022-2868: F ... oval:org.secpod.oval:def:89047727 This update for tiff fixes the following issues: - CVE-2022-2519: Fixed a double free in rotateImage . - CVE-2022-2520: Fixed a assertion failure in rotateImage . - CVE-2022-2521: Fixed invalid free in TIFFClose . - CVE-2022-2867: Fixed out of bounds read and write in tiffcrop.c . - CVE-2022-2868: F ... oval:org.secpod.oval:def:707796 tiff: Tag Image File Format library Several security issues were fixed in LibTIFF. oval:org.secpod.oval:def:1701545 LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 236b71 ... oval:org.secpod.oval:def:89334 Several buffer overflow, divide by zero or out of bounds read/write vulnerabilities were discovered in tiff, the Tag Image File Format library and tools, which may cause denial of service when processing a crafted TIFF image. oval:org.secpod.oval:def:610364 Several buffer overflow, divide by zero or out of bounds read/write vulnerabilities were discovered in tiff, the Tag Image File Format library and tools, which may cause denial of service when processing a crafted TIFF image. |