Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="4668">
  <packager>fstrba</packager>
  <issue tracker="cve" id="2016-3623"></issue>
  <issue tracker="cve" id="2016-3945"></issue>
  <issue tracker="cve" id="2016-3990"></issue>
  <issue tracker="cve" id="2016-3991"></issue>
  <issue tracker="cve" id="2016-5314"></issue>
  <issue tracker="cve" id="2016-5316"></issue>
  <issue tracker="cve" id="2016-5317"></issue>
  <issue tracker="cve" id="2016-5320"></issue>
  <issue tracker="cve" id="2016-5875"></issue>
  <issue tracker="bnc" id="974614">VUL-1: CVE-2016-3945: tiff: Out-of-bounds Write in the tiff2rgba tool</issue>
  <issue tracker="bnc" id="974618">VUL-1: CVE-2016-3623: libtiff: Divide By Zero in the rgb2ycbcr tool</issue>
  <issue tracker="bnc" id="975069">VUL-1: CVE-2016-3990: tiff: out-of-bounds write in horizontalDifference8() in tiffcp tool</issue>
  <issue tracker="bnc" id="975070">VUL-1: CVE-2016-3991: tiff: out-of-bounds write in loadImage() in tiffcrop tool</issue>
  <issue tracker="bnc" id="984808">VUL-1: tiff: CVE-2016-5320: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c</issue>
  <issue tracker="bnc" id="984831">VUL-1: tiff: CVE-2016-5314: Out-of-bounds write in PixarLogDecode() function</issue>
  <issue tracker="bnc" id="984837">VUL-0: tiff: CVE-2016-5316: Out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c</issue>
  <issue tracker="bnc" id="984842">VUL-1: tiff: CVE-2016-5317: Out-of-bounds write in PixarLogDecode() function in libtiff.so</issue>
  <issue tracker="bnc" id="987351">VUL-1: CVE-2016-5875: tiff: heap-based buffer overflow when using the PixarLog compressionformat</issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>security update for tiff</summary>
  <description>   This update for tiff fixes the following issues:

   * CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for
     invalid images (bsc#964225)
   * CVE-2016-3186: Buffer overflow in gif2tiff (bnc#973340).
   * CVE-2016-5875: heap-based buffer overflow when using the PixarLog
     compressionformat (bsc#987351)
   * CVE-2016-5316: Out-of-bounds read in PixarLogCleanup() function in
     tif_pixarlog.c (bsc#984837)
   * CVE-2016-5314: Out-of-bounds write in PixarLogDecode() function
     (bsc#984831)
   * CVE-2016-5317: Out-of-bounds write in PixarLogDecode() function in
     libtiff.so (bsc#984842)
   * CVE-2016-5320: Out-of-bounds write in PixarLogDecode() function in
     tif_pixarlog.c (bsc#984808)</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places