Overview

File _patchinfo of Package patchinfo.1797

<patchinfo incident="1797">
  <issue id="960341" tracker="bnc">VUL-0: CVE-2015-7554: tiff: libtiff: invalid write</issue>
  <issue id="942690" tracker="bnc">VUL-1: tiff: unfixed issues</issue>
  <issue id="CVE-2015-7554" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>fstrba</packager>
  <description>
This update to tiff 4.0.6 fixes the following issues:

- CVE-2015-7554: Out-of-bounds write in the thumbnail and tiffcmp tools allowed attacker to cause a denial of service or have unspecified further impact (bsc#960341)
- bsc#942690: potential out-of-bound write in NeXTDecode() (#2508)
</description>
  <summary>Security update for tiff</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places