Debian Bug report logs -
#934780
tiff: CVE-2019-14973
Package:
src:tiff;
Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 14 Aug 2019 19:06:01 UTC
Severity: important
Tags: security, upstream
Found in version tiff/4010-4
Fixed in ...
Synopsis
Moderate: libtiff security update
Type/Severity
Security Advisory: Moderate
Topic
An update for libtiff is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, wh ...
Synopsis
Moderate: libtiff security update
Type/Severity
Security Advisory: Moderate
Topic
An update for libtiff is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, wh ...
Synopsis
Low: OpenShift Container Platform 4340 security and bug fix update
Type/Severity
Security Advisory: Low
Topic
An update is now available for Red Hat OpenShift Container Platform 43Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring S ...
Synopsis
Moderate: security update - Red Hat Ansible Tower 36 runner release (CVE-2019-18874)
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Ansible Tower 36 runner release (CVE-2019-18874)
Description
Updated python-psutil version to 566 inside ansible-runner container(CVE-20 ...
Synopsis
Moderate: security update - Red Hat Ansible Tower 37 runner release (CVE-2019-18874)
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Ansible Tower 37 runner release (CVE-2019-18874)
Description
Updated python-psutil version to 566 inside ansible-runner container (CVE-2 ...
Synopsis
Moderate: OpenShift Container Platform 461 image security update
Type/Severity
Security Advisory: Moderate
Topic
An update is now available for Red Hat OpenShift Container Platform 46Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability S ...
Multiple integer overflows have been discovered in the libtiff library
and the included tools
For the stable distribution (buster), these problems have been fixed in
version 410+git191117-2~deb10u1
We recommend that you upgrade your tiff packages
For the detailed security status of tiff please refer to
its security tracker page at:
sec ...
Several vulnerabilities have been found in the TIFF library, which may
result in denial of service or the execution of arbitrary code if
malformed image files are processed
For the oldstable distribution (stretch), these problems have been fixed
in version 408-2+deb9u5
We recommend that you upgrade your tiff packages
For the detailed security ...
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_auxc in LibTIFF through 4010 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards This can, for example, lead to an application crash (CVE-2019-14973)
tif_getimagec in LibTIFF through 4010, as used in GDAL through 301 and othe ...
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_auxc in LibTIFF through 4010 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards This can, for example, lead to an application crash (CVE-2019-14973)
tif_getimagec in LibTIFF through 4010, as used in GDAL through 301 and othe ...
Impact:
Moderate
Public Date:
2019-08-14
CWE:
CWE-190
Bugzilla:
1745951:
CVE-2019-14973 libtiff: intege ...