Security update for tiff
This update to tiff 4.0.6 fixes the following issues:
- CVE-2015-7554: Out-of-bounds write in the thumbnail and tiffcmp tools allowed attacker to cause a denial of service or have unspecified further impact (bsc#960341)
- bsc#942690: potential out-of-bound write in NeXTDecode() (#2508)
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Fridrich Strba (fstrba)
Fixed bugs
bnc#960341
VUL-0: CVE-2015-7554: tiff: libtiff: invalid write
bnc#942690
VUL-1: tiff: unfixed issues
