SUSE-SU-2018:3925-1 -- SLES tiff, libtiff-devel, libtiff5ID: oval:org.secpod.oval:def:89049652 | Date: (C)2023-12-20 (M)2023-12-20 |
Class: PATCH | Family: unix |
This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf . - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c . - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write . Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Desktop 15 |
Product: |
tiff |
libtiff-devel |
libtiff5 |