Synopsis: Moderate: libtiff security update
Advisory ID: SLSA-2020:3902-1
Issue Date: 2020-10-01
CVE Numbers: CVE-2019-17546
CVE-2019-14973
—
Security Fix(es):
* libtiff: integer overflow in _TIFFCheckMalloc and _TIFFCheckRealloc in
tif_aux.c (CVE-2019-14973)
* libtiff: integer overflow leading to heap-based buffer overflow in
tif_getimage.c (CVE-2019-17546)
—
SL7
x86_64
libtiff-4.0.3-35.el7.x86_64.rpm
libtiff-devel-4.0.3-35.el7.i686.rpm
libtiff-4.0.3-35.el7.i686.rpm
libtiff-devel-4.0.3-35.el7.x86_64.rpm
libtiff-debuginfo-4.0.3-35.el7.i686.rpm
libtiff-debuginfo-4.0.3-35.el7.x86_64.rpm
libtiff-static-4.0.3-35.el7.i686.rpm
libtiff-static-4.0.3-35.el7.x86_64.rpm
libtiff-tools-4.0.3-35.el7.x86_64.rpm
– Scientific Linux Development Team
