SUSE-SU-2018:3911-2 -- SLES tiff, libtiffID: oval:org.secpod.oval:def:89002038 | Date: (C)2021-02-26 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf . - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c . - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write . Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging
Platform: |
SUSE Linux Enterprise Server 12 SP4 |