| Bug ID | 1022790 |
|---|---|
| Summary | VUL-1: libtiff: Out-of-Bound read and write issues in put1bitbwtile()(tiff-4.0.7/libtiff/tif-getimage.c:1352) |
| Classification | openSUSE |
| Product | openSUSE Distribution |
| Version | Leap 42.2 |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | Security |
| Assignee | security-team@suse.de |
| Reporter | mikhail.kasimov@gmail.com |
| QA Contact | qa-bugs@suse.de |
| Found By | --- |
| Blocker | --- |
Ref: http://seclists.org/oss-sec/2017/q1/235 =============================================== Hi: These issues were discovered via libtiff 4.0.7, however after upstream analysis they were found that they are in netpbm(10.47.63) The url of bug tracker: http://bugzilla.maptools.org/show_bug.cgi?id=2654 http://bugzilla.maptools.org/show_bug.cgi?id=2655 Then I mailed the maintainer of netpbm and he promised fix them in the next Netpbm Super Stable release (the release series I tested) at the end of March. Could you please assign CVE id's for these? Best Regards, chunibalon of VARAS@IIE =============================================== https://software.opensuse.org/package/libtiff5 TW: 4.0.7 (official repo) 42.(1|2): 4.0.7 (official repo)