Mailinglist Archive: opensuse-bugs (4258 mails)

< Previous Next >
[Bug 1022791] New: VUL-1: libtiff: Out-of-Bound read and write issues in putgreytile()(tiff-4.0.7/libtiff/tif-getimage.c:1288)
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Tue, 31 Jan 2017 11:21:10 +0000
  • Message-id: <bug-1022791-21960@http.bugzilla.opensuse.org/>
http://bugzilla.opensuse.org/show_bug.cgi?id=1022791


Bug ID: 1022791
Summary: VUL-1: libtiff: Out-of-Bound read and write issues in
putgreytile()(tiff-4.0.7/libtiff/tif-getimage.c:1288)
Classification: openSUSE
Product: openSUSE Distribution
Version: Leap 42.2
Hardware: Other
OS: Other
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Security
Assignee: security-team@xxxxxxx
Reporter: mikhail.kasimov@xxxxxxxxx
QA Contact: qa-bugs@xxxxxxx
Found By: ---
Blocker: ---

Ref: http://seclists.org/oss-sec/2017/q1/235
=============================================
Hi:

These issues were discovered via libtiff 4.0.7, however after
upstream analysis they were found that they are in netpbm(10.47.63)
The url of bug tracker:
http://bugzilla.maptools.org/show_bug.cgi?id=2654
http://bugzilla.maptools.org/show_bug.cgi?id=2655
Then I mailed the maintainer of netpbm and he promised fix them in
the next Netpbm Super Stable release (the release series I tested) at the
end of March.
Could you please assign CVE id's for these?

Best Regards,
chunibalon of VARAS@IIE
=============================================


https://software.opensuse.org/package/libtiff5

TW: 4.0.7 (official repo)
42.(1|2): 4.0.7 (official repo)


See also boo #1022790

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >
This Thread
  • No further messages