Oracle OIT IX SDK TIFF ExtraSamples Code Execution Vulnerabiity(CVE-2016-3581)

Description While parsing a specially crafted TIFF file, a parser confussion can lead to a heap buffer overflow resulting in out of bounds memory overwrite leading to arbitrary code execution. Tested Versions Oracle Outside In IX sdk 8.5.1 Product URLs...

Updated libtiff package fixes security vulnerabilities

In libtiff, in tifnext.c, a potential out-of-bound write in NeXTDecode triggered by the test case for CVE-2015-1547 maptools bugzilla 2508. In libtiff, in tifgetimage.c, out-of-bound reads in the TIFFRGBAImage interface in case of unsupported values of SamplesPerPixel/ExtraSamples for LogLUV /...