Security update for tiff SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:3911-2 Final 1 1 2018-12-06T13:03:37Z current 2018-12-06T13:03:37Z 2018-12-06T13:03:37Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for tiff This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf (bsc#1099257). - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c (bsc#1113672). - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write (bsc#1113094). Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP4-2018-2782,SUSE-SLE-SDK-12-SP4-2018-2782,SUSE-SLE-SERVER-12-SP4-2018-2782 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20183911-2/ Link for SUSE-SU-2018:3911-2 https://lists.suse.com/pipermail/sle-security-updates/2018-December/004931.html E-Mail link for SUSE-SU-2018:3911-2 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1099257 SUSE Bug 1099257 https://bugzilla.suse.com/1113094 SUSE Bug 1113094 https://bugzilla.suse.com/1113672 SUSE Bug 1113672 https://www.suse.com/security/cve/CVE-2018-12900/ SUSE CVE CVE-2018-12900 page https://www.suse.com/security/cve/CVE-2018-18557/ SUSE CVE CVE-2018-18557 page https://www.suse.com/security/cve/CVE-2018-18661/ SUSE CVE CVE-2018-18661 page SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4 libtiff5-4.0.9-44.27.1 libtiff5-32bit-4.0.9-44.27.1 libtiff-devel-4.0.9-44.27.1 tiff-4.0.9-44.27.1 libtiff5-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libtiff5-32bit-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libtiff5-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server 12 SP4 libtiff5-32bit-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server 12 SP4 tiff-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server 12 SP4 libtiff5-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libtiff5-32bit-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 tiff-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libtiff-devel-4.0.9-44.27.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP4 Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file. CVE-2018-12900 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Software Development Kit 12 SP4:libtiff-devel-4.0.9-44.27.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183911-2/ https://www.suse.com/security/cve/CVE-2018-12900.html CVE-2018-12900 https://bugzilla.suse.com/1099257 SUSE Bug 1099257 https://bugzilla.suse.com/1125113 SUSE Bug 1125113 https://bugzilla.suse.com/1150480 SUSE Bug 1150480 LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 (with JBIG enabled) decodes arbitrarily-sized JBIG into a buffer, ignoring the buffer size, which leads to a tif_jbig.c JBIGDecode out-of-bounds write. CVE-2018-18557 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Software Development Kit 12 SP4:libtiff-devel-4.0.9-44.27.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183911-2/ https://www.suse.com/security/cve/CVE-2018-18557.html CVE-2018-18557 https://bugzilla.suse.com/1113094 SUSE Bug 1113094 An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function LZWDecode in the file tif_lzw.c. CVE-2018-18661 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Desktop 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-32bit-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libtiff5-4.0.9-44.27.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:tiff-4.0.9-44.27.1 SUSE Linux Enterprise Software Development Kit 12 SP4:libtiff-devel-4.0.9-44.27.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183911-2/ https://www.suse.com/security/cve/CVE-2018-18661.html CVE-2018-18661 https://bugzilla.suse.com/1113672 SUSE Bug 1113672