SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2023-342

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2023-342

Security update for tiff

Type: security

Severity: important

Issued: 2023-02-10

Description:

This update for tiff fixes the following issues:

- CVE-2022-48281: Fixed a buffer overflow that could be triggered via
  a crafted image (bsc#1207413).

References

CVE: CVE-2022-48281
Bugzilla: 1207413 VUL-0: CVE-2022-48281: tiff: heap-based buffer overflow via a crafted TIFF image via processCropSelections in tools/tiffcrop.c

Packages

tiff-4.0.9-150000.45.25.1