Debian Bug report logs -
#1011160
Incorrect patch for CVE-2022-1355
Package:
src:tiff;
Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>;
Reported by: bugs@humanlegorguk
Date: Tue, 17 May 2022 18:12:25 UTC
Severity: normal
Found in version tiff/430-7
Fixed in version tiff/430-8
Done: Laszlo Bosz ...
Several security issues were fixed in LibTIFF ...
Several buffer overflow, divide by zero or out of bounds read/write
vulnerabilities were discovered in tiff, the Tag Image File Format (TIFF)
library and tools, which may cause denial of service when processing a
crafted TIFF image
For the stable distribution (bullseye), these problems have been fixed in
version 420-1+deb11u3
We recommend that ...
A stack buffer overflow flaw was found in Libtiffs' tiffcpc in main() function This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service (CVE-2022-1355)
A vulnerability was found in LibTIFF It has be ...
Synopsis
Moderate: Logging Subsystem 555 - Red Hat OpenShift security update
Type/Severity
Security Advisory: Moderate
Topic
Logging Subsystem 555 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Synopsis
Important: Migration Toolkit for Runtimes security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Migration Toolkit for Runtimes (v101)Red Hat Product Security has rated this update as having a security impactof Important A Common Vulnerability Scoring System (CVSS) base score, whichgives a ...
Synopsis
Important: Red Hat Advanced Cluster Management 263 security update
Type/Severity
Security Advisory: Important
Topic
Red Hat Advanced Cluster Management for Kubernetes 263 GeneralAvailability release images, which provide security updates, fix bugs, and update container imagesRed Hat Product Security has rated this update as havi ...
Synopsis
Moderate: libtiff security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libtiff is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a se ...
Synopsis
Moderate: Openshift Logging 5314 bug fix release and security update
Type/Severity
Security Advisory: Moderate
Topic
Openshift Logging Bug Fix Release (5314)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Synopsis
Moderate: libtiff security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libtiff is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a se ...
Synopsis
Moderate: Migration Toolkit for Containers (MTC) 176 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
The Migration Toolkit for Containers (MTC) 176 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...
A stack buffer overflow flaw was found in Libtiffs' tiffcpc in main() function This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service (CVE-2022-1355)
A vulnerability was found in LibTIFF It has be ...
A stack buffer overflow flaw was found in Libtiffs' tiffcpc in main() function This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service ...
A heap buffer overflow flaw was found in Libtiffs' tiffinfoc in TIFFReadRawDataStriped() function This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service (CVE-2022-1354)
A stack buffer overflow flaw was found in Libtiffs' tiffcpc ...
Out-of-bounds Read error in tiffcrop in libtiff 430 allows attackers to cause a denial-of-service via a crafted tiff file For users that compile libtiff from sources, the fix is available with commit 46dc8fcd (CVE-2022-1056)
A heap buffer overflow flaw was found in Libtiffs' tiffinfoc in TIFFReadRawDataStriped() function This flaw allows an a ...