SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4411

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4411

Security update for tiff

Type: security

Severity: important

Issued: 2022-12-13

Description:

This update for tiff fixes the following issues:

- CVE-2022-3570: Fixed heap buffer overflows in tiffcrop.c (bsc#1205422).
- CVE-2022-3598: Fixed out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c [bsc#1204642]

References

Packages

tiff-4.0.9-150000.45.22.1