SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-4869

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-4869

Security update for tiff

Type: security

Severity: important

Issued: 2023-12-14

Description:

This update for tiff fixes the following issues:

- CVE-2023-2731: Fix null pointer deference in LZWDecode() (bsc#1211478).
- CVE-2023-1916: Fix out-of-bounds read in extractImageSection() (bsc#1210231).
- CVE-2023-26965: Fix heap-based use after free in loadImage() (bsc#1212398).
- CVE-2022-40090: Fix infinite loop in TIFFReadDirectory() (bsc#1214680).

References

CVE: CVE-2023-2731
CVE: CVE-2023-26965
CVE: CVE-2023-1916
CVE: CVE-2022-40090
CVE: CVE-2022-1622
Bugzilla: 1214680 VUL-0: CVE-2022-40090: tiff: infinite loop via a crafted TIFF file
Bugzilla: 1212398 VUL-0: CVE-2023-26965: tiff: heap-based use after free via a crafted TIFF imag
Bugzilla: 1211478 VUL-0: CVE-2023-2731: tiff: null pointer deference in LZWDecode() in libtiff/tif_lzw.c
Bugzilla: 1210231 VUL-0: CVE-2023-1916: tiff: libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c
Bugzilla: 1199483 VUL-0: CVE-2022-1622: tiff: out-of-bounds read in LZWDecode

Packages

tiff-4.0.9-150000.45.35.1