|
|
Subscribe / Log in / New account

tiff: multiple vulnerabilities

Package(s):tiff CVE #(s):CVE-2016-5314 CVE-2016-5316 CVE-2016-5317 CVE-2016-5320 CVE-2016-5875
Created:July 28, 2016 Updated:August 3, 2016
Description: From the openSUSE advisory:

- CVE-2016-5314: Fixed an out-of-bounds write in PixarLogDecode() function (boo#984831)

- CVE-2016-5316: Fixed an out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c (boo#984837)

- CVE-2016-5317: Fixed an out-of-bounds write in PixarLogDecode() function in libtiff.so (boo#984842)

- CVE-2016-5320: Fixed an out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c (boo#984808)

- CVE-2016-5875: Fixed a heap-based buffer overflow when using the PixarLog compressionformat (boo#987351)

Alerts:
Mageia MGASA-2016-0349 libtiff 2016-10-21
openSUSE openSUSE-SU-2016:2375-1 tiff 2016-09-25
openSUSE openSUSE-SU-2016:2321-1 tiff 2016-09-16
Debian-LTS DLA-610-1 tiff3 2016-09-05
Debian-LTS DLA-606-1 tiff 2016-08-31
Scientific Linux SLSA-2016:1546-1 libtiff 2016-08-03
Scientific Linux SLSA-2016:1547-1 libtiff 2016-08-02
Oracle ELSA-2016-1547 libtiff 2016-08-02
Oracle ELSA-2016-1546 libtiff 2016-08-02
CentOS CESA-2016:1547 libtiff 2016-08-02
CentOS CESA-2016:1546 libtiff 2016-08-02
Red Hat RHSA-2016:1547-01 libtiff 2016-08-02
Red Hat RHSA-2016:1546-01 libtiff 2016-08-02
openSUSE openSUSE-SU-2016:1889-1 tiff 2016-07-27
Debian DSA-3762-1 tiff 2017-01-13
Gentoo 201701-16 tiff 2017-01-09
openSUSE openSUSE-SU-2017:0074-1 tiff 2017-01-08
openSUSE openSUSE-SU-2016:3035-1 tiff 2016-12-07
Arch Linux ASA-201611-26 libtiff 2016-11-25
Arch Linux ASA-201611-27 lib32-libtiff 2016-11-25
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds