File _patchinfo of Package patchinfo.1946

<patchinfo incident="1946">
  <issue id="973340" tracker="bnc">Buffer overflow in gif2tiff</issue>
  <issue id="987351" tracker="bnc">Heap-based buffer overflow when using the PixarLog compressionformat</issue>
  <issue id="984842" tracker="bnc">Out-of-bounds write in PixarLogDecode() function in libtiff.so</issue>
  <issue id="984808" tracker="bnc">Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c</issue>
  <issue id="964225" tracker="bnc">Out-of-bounds writes for invalid images</issue>
  <issue id="984837" tracker="bnc">Out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c</issue>
  <issue id="984831" tracker="bnc">Out-of-bounds write in PixarLogDecode() function</issue>
  <issue id="2016-5875" tracker="cve" />
  <issue id="2016-5317" tracker="cve" />
  <issue id="2016-5320" tracker="cve" />
  <issue id="2016-5316" tracker="cve" />
  <issue id="2016-3186" tracker="cve" />
  <issue id="2016-5314" tracker="cve" />
  <issue id="2015-8782" tracker="cve" />
  <issue id="2015-8783" tracker="cve" />
  <issue id="2015-8781" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>fstrba</packager>
  <description>
This update for tiff fixes the following issues:

* CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for invalid images (bsc#964225)
* CVE-2016-3186: Buffer overflow in gif2tiff (bnc#973340).
* CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat (bsc#987351)
* CVE-2016-5316: Out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c (bsc#984837)
* CVE-2016-5314: Out-of-bounds write in PixarLogDecode() function (bsc#984831)
* CVE-2016-5317: Out-of-bounds write in PixarLogDecode() function in libtiff.so (bsc#984842)
* CVE-2016-5320: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c (bsc#984808) 

</description>
  <summary>Security update for tiff</summary>
</patchinfo>