Lucene search
OracleLinuxELSA-2020-3902HistoryOct 06, 2020 - 12:00 a.m.
libtiff security update
2020-10-0600:00:00
linux.oracle.com
9
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
[4.0.3-35]
- Fix two resource leaks
Related: #1771371
[4.0.3-34] - Fix CVE-2019-17546
Resolves: #1771371
[4.0.3-33] - Fix CVE-2019-14973
Resolves: #1755704
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | libtiff | < 4.0.3-35.el7 | libtiff-4.0.3-35.el7.src.rpm |
| oracle linux | 7 | aarch64 | libtiff | < 4.0.3-35.el7 | libtiff-4.0.3-35.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | libtiff-devel | < 4.0.3-35.el7 | libtiff-devel-4.0.3-35.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | libtiff-static | < 4.0.3-35.el7 | libtiff-static-4.0.3-35.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | libtiff-tools | < 4.0.3-35.el7 | libtiff-tools-4.0.3-35.el7.aarch64.rpm |
| oracle linux | 7 | src | libtiff | < 4.0.3-35.el7 | libtiff-4.0.3-35.el7.src.rpm |
| oracle linux | 7 | i686 | libtiff | < 4.0.3-35.el7 | libtiff-4.0.3-35.el7.i686.rpm |
| oracle linux | 7 | x86_64 | libtiff | < 4.0.3-35.el7 | libtiff-4.0.3-35.el7.x86_64.rpm |
| oracle linux | 7 | i686 | libtiff-devel | < 4.0.3-35.el7 | libtiff-devel-4.0.3-35.el7.i686.rpm |
| oracle linux | 7 | x86_64 | libtiff-devel | < 4.0.3-35.el7 | libtiff-devel-4.0.3-35.el7.x86_64.rpm |
Related
osv
osv
tiff - security update
2020-01-21 00:00:00
gdal - security update
2020-03-19 00:00:00
CVE-2019-14973
2019-08-14 06:15:10
redhat
redhat
(RHSA-2020:3902) Moderate: libtiff security update
2020-09-29 07:42:07
(RHSA-2020:4634) Moderate: libtiff security update
2020-11-03 12:22:21
(RHSA-2020:1688) Moderate: libtiff security update
2020-04-28 09:05:29
ubuntu
ubuntu
LibTIFF vulnerabilities
2019-10-17 00:00:00
LibTIFF vulnerabilities
2023-02-02 00:00:00
amazon
amazon
Medium: libtiff
2020-10-22 18:24:00
Medium: libtiff
2020-11-14 01:23:00
openvas
openvas
Debian: Security Advisory (DSA-4608-1)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2020-1071)
2020-01-23 00:00:00
Ubuntu: Security Advisory (USN-4158-1)
2019-10-18 00:00:00
nessus
nessus
CentOS 7 : libtiff (CESA-2020:3902)
2020-10-20 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : libtiff Multiple Vulnerabilities (NS-SA-2021-0014)
2021-03-10 00:00:00
RHEL 7 : libtiff (RHSA-2020:3902)
2020-09-30 00:00:00
debian
debian
[SECURITY] [DSA 4608-1] tiff security update
2020-01-21 21:45:57
[SECURITY] [DLA 1897-1] tiff security update
2019-08-25 20:41:31
[SECURITY] [DLA 2147-1] gdal security update
2020-03-18 20:47:13
cloudfoundry
cloudfoundry
USN-4158-1: LibTIFF vulnerabilities | Cloud Foundry
2021-03-09 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: libtiff-4.0.10-8.fc31
2020-03-04 21:31:32
[SECURITY] Fedora 30 Update: libtiff-4.0.10-8.fc30
2020-03-04 21:38:46
[SECURITY] Fedora 31 Update: libtiff-4.0.10-7.fc31
2019-11-30 00:58:08
centos
centos
libtiff security update
2020-10-20 18:24:55
suse
suse
Security update for tiff (moderate)
2020-09-28 00:00:00
Security update for tiff (moderate)
2020-11-06 00:00:00
Security update for tiff (important)
2022-02-17 00:00:00
redhatcve
redhatcve
CVE-2019-14973
2019-08-27 10:21:13
CVE-2019-17546
2019-10-25 19:21:00
ubuntucve
ubuntucve
CVE-2019-14973
2019-08-14 00:00:00
CVE-2019-17546
2019-10-14 00:00:00
prion
prion
Integer overflow
2019-08-14 06:15:00
Integer overflow
2019-10-14 02:15:00
ibm
ibm
cve
cve
CVE-2019-17546
2019-10-14 02:15:00
CVE-2019-14973
2019-08-14 06:15:00
veracode
veracode
Denial Of Service (DoS)
2019-10-15 04:59:30
Integer Overflow
2019-08-26 07:39:42
mageia
mageia
Updated libtiff packages fix security vulnerability
2019-12-06 17:15:42
debiancve
debiancve
CVE-2019-14973
2019-08-14 06:15:00
CVE-2019-17546
2019-10-14 02:15:00
oraclelinux
oraclelinux
libtiff security update
2020-05-05 00:00:00
libtiff security update
2020-11-10 00:00:00
alpinelinux
alpinelinux
CVE-2019-14973
2019-08-14 06:15:00
almalinux
almalinux
Moderate: libtiff security update
2020-11-03 12:22:21
rocky
rocky
libtiff security update
2020-11-03 12:22:21
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 4.1.0-alt1
2019-11-14 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0044
2019-11-28 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0044
2019-11-28 00:00:00
slackware
slackware
[slackware-security] libtiff
2019-11-04 22:37:12
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2020-03-15 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related for ELSA-2020-3902