File _patchinfo of Package patchinfo.8556

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.8556

<patchinfo incident="8556">
  <issue tracker="bnc" id="1092480">VUL-1: CVE-2018-10779: tiff: TIFFWriteScanline in tif_write.c has a heap-based buffer over-read</issue>
  <issue tracker="bnc" id="1074186">VUL-1: CVE-2017-17942: tiff: issue in the function PackBitsEncode could lead to a heap overflow and cause denial of service</issue>
  <issue tracker="bnc" id="983440">VUL-0: CVE-2016-5319: tiff: heap buffer overflow in PackBitsEncode</issue>
  <issue tracker="cve" id="2018-10779"/>
  <issue tracker="cve" id="2017-17942"/>
  <issue tracker="cve" id="2016-5319"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for tiff fixes the following issues:

Security issues fixed:

- CVE-2018-10779: Fixed a heap-based buffer overflow in TIFFWriteScanline()
  in tif_write.c (bsc#1092480)
- CVE-2017-17942: Fixed a heap-based buffer overflow in the function
  PackBitsEncode in tif_packbits.c. (bsc#1074186)
- CVE-2016-5319: Fixed a beap-based buffer overflow in bmp2tiff (bsc#983440)
</description>
  <summary>Security update for tiff</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.8556

Places