Vulnerability Manager Plus

SUSE-SU-2018:4191-1(SUSE Linux Enterprise Desktop 12-SP3 ) libtiff5-debuginfo-4.0.9-44.30.1.x86_64.rpm

Risk Information

Base Score

9.1

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

EPSS Score

Exploitation Probability

1.239%

CVE Information

Source CVE
CVE-2016-6223

Associated CVE
CVE-2016-6223
CVE-2016-10092
CVE-2016-10093
CVE-2016-10094

Patch Details

No records found

References

http://bugzilla.maptools.org/show_bug.cgi?id=2610
http://bugzilla.maptools.org/show_bug.cgi?id=2620
http://bugzilla.maptools.org/show_bug.cgi?id=2622
http://bugzilla.maptools.org/show_bug.cgi?id=2640
http://libtiff.maptools.org/v4.0.7.html
http://www.debian.org/security/2017/dsa-3762
http://www.openwall.com/lists/oss-security/2016/07/13/3
http://www.openwall.com/lists/oss-security/2016/07/14/4
http://www.openwall.com/lists/oss-security/2017/01/01/10
http://www.openwall.com/lists/oss-security/2017/01/01/12
http://www.securityfocus.com/bid/91741
http://www.securityfocus.com/bid/95214
http://www.securityfocus.com/bid/95215
http://www.securityfocus.com/bid/95218
https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/
https://github.com/vadz/libtiff/commit/787c0ee906430b772f33ca50b97b8b5ca070faec
https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a
https://github.com/vadz/libtiff/commit/c7153361a4041260719b340f73f2f76
https://security.gentoo.org/glsa/201701-16