SUSE-SU-2016:2527-1 -- SLES tiff, libtiff3ID: oval:org.secpod.oval:def:89045358 | Date: (C)2021-08-03 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for tiff fixes the following issues: - CVE-2016-3622: Specially crafted TIFF images could trigger a crash in tiff2rgba - Various out-of-bound write vulnerabilities with unspecified impact - CVE-2016-5314: Specially crafted TIFF images could trigger a crash that could result in DoS - CVE-2016-5316: Specially crafted TIFF images could trigger a crash in the rgb2ycbcr tool, leading to Doa - CVE-2016-5317: Specially crafted TIFF images could trigger a crash through an out of bound write - CVE-2016-5320: Specially crafted TIFF images could trigger a crash or potentially allow remote code execution when using the rgb2ycbcr command - CVE-2016-5875: Specially crafted TIFF images could trigger could allow arbitrary code execution - CVE-2016-3623: Specially crafted TIFF images could trigger a crash in rgb2ycbcr - CVE-2016-3945: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution via tiff2rgba - CVE-2016-3990: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution - CVE-2016-3186: Specially crafted TIFF imaged could trigger a crash in the gif2tiff command via a buffer overflow
Platform: |
SUSE Linux Enterprise Server 11 SP4 |