SUSE-SU-2018:3911-1 -- SLES tiff, libtiff| ID: oval:org.secpod.oval:def:89002304 | Date: (C)2021-02-26 (M)2022-10-10 |
| Class: PATCH | Family: unix |
This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf . - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c . - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write . Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging
| Platform: |
| SUSE Linux Enterprise Server 12 SP3 |
