ID SUSE-SU-2017:1044-1 Type suse Reporter Suse Modified 2017-04-18T15:13:00
Description
This update for tiff fixes the following issues:
Security issues fixed:
- CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial
of service (heap-based buffer overflow) or possibly have unspecified
other impact via a crafted TIFF image, related to "WRITE of size 2048"
and libtiff/tif_next.c:64:9 (bsc#1031247).
- CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote
attackers to cause a denial of service (heap-based buffer over-read and
buffer overflow) or possibly have unspecified other impact via a crafted
TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13
(bsc#1031249).
- CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial
of service (heap-based buffer over-read) or possibly have unspecified
other impact via a crafted TIFF image, related to "READ of size 8" and
libtiff/tif_read.c:523:22 (bsc#1031250).
- CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial
of service (heap-based buffer over-read) or possibly have unspecified
other impact via a crafted TIFF image, related to "READ of size 512" and
libtiff/tif_unix.c:340:2 (bsc#1031254).
- CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers
to cause a denial of service (integer underflow and heap-based buffer
under-read) or possibly have unspecified other impact via a crafted TIFF
image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23
(bsc#1031255).
- CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial
of service (divide-by-zero error and application crash) via a crafted
TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).
- CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial
of service (divide-by-zero error and application crash) via a crafted
TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).
{"type": "suse", "published": "2017-04-18T15:13:00", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-04/msg00019.html", "hashmap": [{"key": "affectedPackage", "hash": "72051cecd40493bf69a7ec5033083814"}, {"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "156e573cb3d6958203988cbe2b4e0273"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "2421e4f12cec9323ba67c09c5fcd2113"}, {"key": "href", "hash": "70893186d5ac005fd2e614d6b1fcdaf9"}, {"key": "modified", "hash": "d4dd7d5e48b657654f30763b8e7e90ee"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "d4dd7d5e48b657654f30763b8e7e90ee"}, {"key": "references", "hash": "0a34920c521b41ee1a8b1e523be20f6f"}, {"key": "reporter", "hash": "403f5d2e0d35fd03d5596c275ba99340"}, {"key": "title", "hash": "73698e15ff2e92807f7f3445b7803280"}, {"key": "type", "hash": "f9dc32aae2d2341a550dd89f78cc49b3"}], "bulletinFamily": "unix", "cvss": {"vector": "NONE", "score": 0.0}, "viewCount": 13, "history": [], "edition": 1, "objectVersion": "1.2", "reporter": "Suse", "title": "Security update for tiff (important)", "enchantments": {"score": {"vector": "NONE", "value": 6.8}, "vulnersScore": 6.8}, "references": ["https://bugzilla.suse.com/1031263", "https://bugzilla.suse.com/1031250", "https://bugzilla.suse.com/1031254", "https://bugzilla.suse.com/1031262", "https://bugzilla.suse.com/1031255", "https://bugzilla.suse.com/1031247", "https://bugzilla.suse.com/1031249"], "id": "SUSE-SU-2017:1044-1", "hash": "69f55ece238bb3cd324aeba60f3ff73cdcabfee2d2165d47715dc4685697d45b", "lastseen": "2017-04-18T13:18:34", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2017-04-18T15:13:00", "description": "This update for tiff fixes the following issues:\n\n Security issues fixed:\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer overflow) or possibly have unspecified\n other impact via a crafted TIFF image, related to "WRITE of size 2048"\n and libtiff/tif_next.c:64:9 (bsc#1031247).\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote\n attackers to cause a denial of service (heap-based buffer over-read and\n buffer overflow) or possibly have unspecified other impact via a crafted\n TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13\n (bsc#1031249).\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to "READ of size 8" and\n libtiff/tif_read.c:523:22 (bsc#1031250).\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to "READ of size 512" and\n libtiff/tif_unix.c:340:2 (bsc#1031254).\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers\n to cause a denial of service (integer underflow and heap-based buffer\n under-read) or possibly have unspecified other impact via a crafted TIFF\n image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23\n (bsc#1031255).\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).\n\n", "affectedPackage": [{"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.aarch64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.aarch64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.aarch64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.aarch64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.aarch64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.aarch64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.ppc64le.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-43.1.s390x.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.aarch64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.s390x.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.s390x.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.aarch64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-43.1.s390x.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.aarch64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.s390x.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.ppc64le.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-43.1.s390x.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "s390x", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-43.1.s390x.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.x86_64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.aarch64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.ppc64le.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff", "packageFilename": "tiff-4.0.7-43.1.ppc64le.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.x86_64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server for Raspberry Pi", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.aarch64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.x86_64.rpm"}, {"arch": "ppc64le", "operator": "lt", "OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.ppc64le.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-43.1.aarch64.rpm"}, {"arch": "aarch64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.2", "packageVersion": "4.0.7-43.1", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-43.1.aarch64.rpm"}, {"arch": "x86_64", "operator": "lt", "OS": "SUSE Linux Enterprise Server", "OSVersion": "12.1", "packageVersion": "4.0.7-43.1", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-43.1.x86_64.rpm"}]}
{"nessus": [{"lastseen": "2018-09-01T23:57:15", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=1031250", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031262", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031255", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031249", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031254", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031247", "https://bugzilla.opensuse.org/show_bug.cgi?id=1031263"], "pluginID": "99704", "description": "This update for tiff fixes the following issues :\n\nSecurity issues fixed :\n\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to 'WRITE of size 2048' and libtiff/tif_next.c:64:9 (bsc#1031247).\n\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 1' and libtiff/tif_fax3.c:413:13 (bsc#1031249).\n\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 8' and libtiff/tif_read.c:523:22 (bsc#1031250).\n\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 512' and libtiff/tif_unix.c:340:2 (bsc#1031254).\n\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 78490' and libtiff/tif_unix.c:115:23 (bsc#1031255).\n\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).\n\nThis update was imported from the SUSE:SLE-12:Update update project.", "edition": 5, "reporter": "Tenable", "published": "2017-04-27T00:00:00", "title": "openSUSE Security Update : tiff (openSUSE-2017-515)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-01-26T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libtiff5-debuginfo-32bit", "p-cpe:/a:novell:opensuse:tiff", "p-cpe:/a:novell:opensuse:tiff-debugsource", "p-cpe:/a:novell:opensuse:libtiff5-32bit", "cpe:/o:novell:opensuse:42.1", "p-cpe:/a:novell:opensuse:tiff-debuginfo", "p-cpe:/a:novell:opensuse:libtiff-devel", "p-cpe:/a:novell:opensuse:libtiff5-debuginfo", "p-cpe:/a:novell:opensuse:libtiff5", "cpe:/o:novell:opensuse:42.2", "p-cpe:/a:novell:opensuse:libtiff-devel-32bit"], "id": "OPENSUSE-2017-515.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99704", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2017-515.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99704);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/01/26 17:32:52 $\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n\n script_name(english:\"openSUSE Security Update : tiff (openSUSE-2017-515)\");\n script_summary(english:\"Check for the openSUSE-2017-515 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for tiff fixes the following issues :\n\nSecurity issues fixed :\n\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer overflow)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'WRITE of size 2048' and\n libtiff/tif_next.c:64:9 (bsc#1031247).\n\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows\n remote attackers to cause a denial of service\n (heap-based buffer over-read and buffer overflow) or\n possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 1' and\n libtiff/tif_fax3.c:413:13 (bsc#1031249).\n\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 8' and\n libtiff/tif_read.c:523:22 (bsc#1031250).\n\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 512' and\n libtiff/tif_unix.c:340:2 (bsc#1031254).\n\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows\n remote attackers to cause a denial of service (integer\n underflow and heap-based buffer under-read) or possibly\n have unspecified other impact via a crafted TIFF image,\n related to 'READ of size 78490' and\n libtiff/tif_unix.c:115:23 (bsc#1031255).\n\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (divide-by-zero error and\n application crash) via a crafted TIFF image, related to\n libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (divide-by-zero error and\n application crash) via a crafted TIFF image, related to\n libtiff/tif_read.c:351:22. (bsc#1031263).\n\nThis update was imported from the SUSE:SLE-12:Update update project.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031247\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031249\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031250\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031254\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031255\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031262\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1031263\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected tiff packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff-devel-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff5-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff5-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtiff5-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:tiff-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:tiff-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/04/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/04/27\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE42\\.1|SUSE42\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"42.1 / 42.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtiff-devel-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtiff5-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtiff5-debuginfo-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"tiff-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"tiff-debuginfo-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"tiff-debugsource-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtiff-devel-32bit-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtiff5-32bit-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-32bit-4.0.7-18.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libtiff-devel-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libtiff5-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"libtiff5-debuginfo-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"tiff-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"tiff-debuginfo-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"tiff-debugsource-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libtiff-devel-32bit-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libtiff5-32bit-4.0.7-17.3.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-32bit-4.0.7-17.3.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtiff-devel-32bit / libtiff-devel / libtiff5-32bit / libtiff5 / etc\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:26", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-ab3acddd21"], "pluginID": "99273", "description": "Security fix for :\n\n - **CVE-2016-10266**\n\n - **CVE-2016-10267**\n\n - **CVE-2016-10268**\n\n - **CVE-2016-10269**\n\n - **CVE-2016-10270**\n\n - **CVE-2016-10271**\n\n - **CVE-2016-10272**\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2017-04-11T00:00:00", "title": "Fedora 25 : libtiff (2017-ab3acddd21)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-02-02T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:libtiff", "cpe:/o:fedoraproject:fedora:25"], "id": "FEDORA_2017-AB3ACDDD21.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99273", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-ab3acddd21.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99273);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/02 14:51:03 $\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n script_xref(name:\"FEDORA\", value:\"2017-ab3acddd21\");\n\n script_name(english:\"Fedora 25 : libtiff (2017-ab3acddd21)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for :\n\n - **CVE-2016-10266**\n\n - **CVE-2016-10267**\n\n - **CVE-2016-10268**\n\n - **CVE-2016-10269**\n\n - **CVE-2016-10270**\n\n - **CVE-2016-10271**\n\n - **CVE-2016-10272**\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-ab3acddd21\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtiff package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libtiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/04/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/04/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"libtiff-4.0.7-4.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtiff\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-13T16:52:53", "references": ["https://www.suse.com/security/cve/CVE-2016-10267/", "https://bugzilla.suse.com/1031263", "https://www.suse.com/security/cve/CVE-2016-10269/", "https://www.suse.com/security/cve/CVE-2016-10270/", "http://www.nessus.org/u?b928618a", "https://www.suse.com/security/cve/CVE-2016-10266/", "https://bugzilla.suse.com/1031250", "https://bugzilla.suse.com/1031254", "https://bugzilla.suse.com/1031262", "https://bugzilla.suse.com/1031255", "https://www.suse.com/security/cve/CVE-2016-10272/", "https://bugzilla.suse.com/1031247", "https://www.suse.com/security/cve/CVE-2016-10268/", "https://bugzilla.suse.com/1031249", "https://www.suse.com/security/cve/CVE-2016-10271/"], "pluginID": "99466", "description": "This update for tiff fixes the following issues: Security issues fixed :\n\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to 'WRITE of size 2048' and libtiff/tif_next.c:64:9 (bsc#1031247).\n\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 1' and libtiff/tif_fax3.c:413:13 (bsc#1031249).\n\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 8' and libtiff/tif_read.c:523:22 (bsc#1031250).\n\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 512' and libtiff/tif_unix.c:340:2 (bsc#1031254).\n\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 78490' and libtiff/tif_unix.c:115:23 (bsc#1031255).\n\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2017-04-19T00:00:00", "title": "SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2017:1044-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:libtiff5", "cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:tiff-debugsource", "p-cpe:/a:novell:suse_linux:tiff", "p-cpe:/a:novell:suse_linux:libtiff5-debuginfo", "p-cpe:/a:novell:suse_linux:tiff-debuginfo"], "id": "SUSE_SU-2017-1044-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99466", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2017:1044-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99466);\n script_version(\"3.4\");\n script_cvs_date(\"Date: 2018/11/10 11:50:05\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2017:1044-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for tiff fixes the following issues: Security issues \nfixed :\n\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer overflow)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'WRITE of size 2048' and\n libtiff/tif_next.c:64:9 (bsc#1031247).\n\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows\n remote attackers to cause a denial of service\n (heap-based buffer over-read and buffer overflow) or\n possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 1' and\n libtiff/tif_fax3.c:413:13 (bsc#1031249).\n\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 8' and\n libtiff/tif_read.c:523:22 (bsc#1031250).\n\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 512' and\n libtiff/tif_unix.c:340:2 (bsc#1031254).\n\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows\n remote attackers to cause a denial of service (integer\n underflow and heap-based buffer under-read) or possibly\n have unspecified other impact via a crafted TIFF image,\n related to 'READ of size 78490' and\n libtiff/tif_unix.c:115:23 (bsc#1031255).\n\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (divide-by-zero error and\n application crash) via a crafted TIFF image, related to\n libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to\n cause a denial of service (divide-by-zero error and\n application crash) via a crafted TIFF image, related to\n libtiff/tif_read.c:351:22. (bsc#1031263).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031247\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031249\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031250\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031254\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031255\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031262\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031263\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10266/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10267/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10268/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10269/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10270/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10271/\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10272/\"\n );\n # https://www.suse.com/support/update/announcement/2017/suse-su-20171044-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b928618a\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 12-SP2:zypper in -t\npatch SUSE-SLE-SDK-12-SP2-2017-610=1\n\nSUSE Linux Enterprise Software Development Kit 12-SP1:zypper in -t\npatch SUSE-SLE-SDK-12-SP1-2017-610=1\n\nSUSE Linux Enterprise Server for Raspberry Pi 12-SP2:zypper in -t\npatch SUSE-SLE-RPI-12-SP2-2017-610=1\n\nSUSE Linux Enterprise Server 12-SP2:zypper in -t patch\nSUSE-SLE-SERVER-12-SP2-2017-610=1\n\nSUSE Linux Enterprise Server 12-SP1:zypper in -t patch\nSUSE-SLE-SERVER-12-SP1-2017-610=1\n\nSUSE Linux Enterprise Desktop 12-SP2:zypper in -t patch\nSUSE-SLE-DESKTOP-12-SP2-2017-610=1\n\nSUSE Linux Enterprise Desktop 12-SP1:zypper in -t patch\nSUSE-SLE-DESKTOP-12-SP1-2017-610=1\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtiff5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtiff5-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:tiff-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:tiff-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/04/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/04/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED12|SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED12 / SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! ereg(pattern:\"^(1|2)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP1/2\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED12\" && (! ereg(pattern:\"^(1|2)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED12 SP1/2\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"libtiff5-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"libtiff5-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"tiff-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"tiff-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"tiff-debugsource-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"libtiff5-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"libtiff5-debuginfo-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"tiff-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"tiff-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"tiff-debugsource-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"libtiff5-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"libtiff5-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"tiff-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"1\", cpu:\"x86_64\", reference:\"tiff-debugsource-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-32bit-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"libtiff5-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"tiff-debuginfo-4.0.7-43.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"2\", cpu:\"x86_64\", reference:\"tiff-debugsource-4.0.7-43.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"tiff\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:08", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-05b9048fbc"], "pluginID": "101563", "description": "Security fix for :\n\n - **CVE-2016-10266**\n\n - **CVE-2016-10267**\n\n - **CVE-2016-10268**\n\n - **CVE-2016-10269**\n\n - **CVE-2016-10270**\n\n - **CVE-2016-10271**\n\n - **CVE-2016-10272**\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2017-07-17T00:00:00", "title": "Fedora 26 : libtiff (2017-05b9048fbc)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-02-01T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:libtiff", "cpe:/o:fedoraproject:fedora:26"], "id": "FEDORA_2017-05B9048FBC.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=101563", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-05b9048fbc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101563);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/01 15:56:50 $\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n script_xref(name:\"FEDORA\", value:\"2017-05b9048fbc\");\n\n script_name(english:\"Fedora 26 : libtiff (2017-05b9048fbc)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for :\n\n - **CVE-2016-10266**\n\n - **CVE-2016-10267**\n\n - **CVE-2016-10268**\n\n - **CVE-2016-10269**\n\n - **CVE-2016-10270**\n\n - **CVE-2016-10271**\n\n - **CVE-2016-10272**\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-05b9048fbc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtiff package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libtiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:26\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/04/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^26([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 26\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC26\", reference:\"libtiff-4.0.7-4.fc26\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtiff\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:53:55", "references": ["https://packages.debian.org/source/wheezy/tiff", "https://lists.debian.org/debian-lts-announce/2017/03/msg00035.html"], "pluginID": "99043", "description": "libtiff is vulnerable to multiple buffer overflows and integer overflows that can lead to application crashes (denial of service) or worse.\n\nCVE-2016-10266\n\nInteger overflow that can lead to divide-by-zero in TIFFReadEncodedStrip (tif_read.c).\n\nCVE-2016-10267\n\nDivide-by-zero error in OJPEGDecodeRaw (tif_ojpeg.c). CVE-2016-10268\n\nHeap-based buffer overflow in TIFFReverseBits (tif_swab.c).\n\nCVE-2016-10269\n\nHeap-based buffer overflow in _TIFFmemcpy (tif_unix.c).\n\nFor Debian 7 'Wheezy', these problems have been fixed in version 4.0.2-6+deb7u11.\n\nWe recommend that you upgrade your tiff packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2017-03-30T00:00:00", "title": "Debian DLA-877-1 : tiff security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-07-09T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:libtiff5-dev", "p-cpe:/a:debian:debian_linux:libtiff5", "p-cpe:/a:debian:debian_linux:libtiffxx5", "p-cpe:/a:debian:debian_linux:libtiff-doc", "cpe:/o:debian:debian_linux:7.0", "p-cpe:/a:debian:debian_linux:libtiff5-alt-dev", "p-cpe:/a:debian:debian_linux:libtiff-tools", "p-cpe:/a:debian:debian_linux:libtiff-opengl"], "id": "DEBIAN_DLA-877.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99043", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-877-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99043);\n script_version(\"3.3\");\n script_cvs_date(\"Date: 2018/07/09 14:30:26\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\");\n\n script_name(english:\"Debian DLA-877-1 : tiff security update\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"libtiff is vulnerable to multiple buffer overflows and integer\noverflows that can lead to application crashes (denial of service) or\nworse.\n\nCVE-2016-10266\n\nInteger overflow that can lead to divide-by-zero in\nTIFFReadEncodedStrip (tif_read.c).\n\nCVE-2016-10267\n\nDivide-by-zero error in OJPEGDecodeRaw (tif_ojpeg.c). CVE-2016-10268\n\nHeap-based buffer overflow in TIFFReverseBits (tif_swab.c).\n\nCVE-2016-10269\n\nHeap-based buffer overflow in _TIFFmemcpy (tif_unix.c).\n\nFor Debian 7 'Wheezy', these problems have been fixed in version\n4.0.2-6+deb7u11.\n\nWe recommend that you upgrade your tiff packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2017/03/msg00035.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/tiff\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Upgrade the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff-opengl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff5-alt-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiff5-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtiffxx5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/03/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"libtiff-doc\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiff-opengl\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiff-tools\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiff5\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiff5-alt-dev\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiff5-dev\", reference:\"4.0.2-6+deb7u11\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtiffxx5\", reference:\"4.0.2-6+deb7u11\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-13T17:11:31", "references": ["https://www.debian.org/security/2017/dsa-3844", "https://packages.debian.org/source/jessie/tiff"], "pluginID": "99973", "description": "Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service, memory disclosure or the execution of arbitrary code.", "edition": 7, "reporter": "Tenable", "published": "2017-05-04T00:00:00", "title": "Debian DSA-3844-1 : tiff - security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2017-7597", "CVE-2016-3658", "CVE-2016-10270", "CVE-2017-7601", "CVE-2016-9535", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2018-11-10T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:tiff"], "id": "DEBIAN_DSA-3844.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=99973", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3844. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(99973);\n script_version(\"3.4\");\n script_cvs_date(\"Date: 2018/11/10 11:49:38\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-3658\", \"CVE-2016-9535\", \"CVE-2017-5225\", \"CVE-2017-7592\", \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\");\n script_xref(name:\"DSA\", value:\"3844\");\n\n script_name(english:\"Debian DSA-3844-1 : tiff - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities have been discovered in the libtiff library\nand the included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/tiff\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2017/dsa-3844\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the tiff packages.\n\nFor the stable distribution (jessie), these problems have been fixed\nin version 4.0.3-12.3+deb8u3.\n\nFor the upcoming stable distribution (stretch), these problems have\nbeen fixed in version 4.0.7-6.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/05/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/05/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"libtiff-doc\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtiff-opengl\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtiff-tools\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtiff5\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtiff5-dev\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtiffxx5\", reference:\"4.0.3-12.3+deb8u3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-06T09:49:17", "references": ["https://bugzilla.suse.com/1033109", "https://bugzilla.suse.com/1033111", "https://bugzilla.suse.com/1033129", "https://bugzilla.suse.com/984808", "https://www.suse.com/security/cve/CVE-2017-7593.html", "https://bugzilla.suse.com/1033126", "https://bugzilla.suse.com/1031250", "https://www.suse.com/security/cve/CVE-2017-7602.html", "https://bugzilla.suse.com/987351", "https://www.suse.com/security/cve/CVE-2017-7601.html", "https://bugzilla.suse.com/1033113", "https://www.suse.com/security/cve/CVE-2017-7596.html", "https://www.suse.com/security/cve/CVE-2017-7600.html", "https://bugzilla.suse.com/1033127", "https://bugzilla.suse.com/984809", "https://bugzilla.suse.com/1031254", "https://www.suse.com/security/cve/CVE-2016-10270.html", "https://bugzilla.suse.com/1033120", "http://www.nessus.org/u?b5d204f9", "https://www.suse.com/security/cve/CVE-2016-10267.html", "https://bugzilla.suse.com/1017694", "https://bugzilla.suse.com/984831", "https://www.suse.com/security/cve/CVE-2017-7597.html", "https://www.suse.com/security/cve/CVE-2016-5315.html", "https://bugzilla.suse.com/1033112", "https://www.suse.com/security/cve/CVE-2017-7599.html", "https://www.suse.com/security/cve/CVE-2017-7595.html", "https://www.suse.com/security/cve/CVE-2016-5314.html", "https://www.suse.com/security/cve/CVE-2016-10269.html", "https://www.suse.com/security/cve/CVE-2017-18013.html", "https://bugzilla.suse.com/1074317"], "pluginID": "110258", "description": "This update for tiff fixes the following issues: Security issues fixed :\n\n - CVE-2016-5315: The setByteArray function in tif_dir.c allowed remote attackers to cause a denial of service (out-of-bounds read) via a crafted tiff image.\n (bsc#984809)\n\n - CVE-2016-10267: LibTIFF allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8. (bsc#1017694)\n\n - CVE-2016-10269: LibTIFF allowed remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 512' and libtiff/tif_unix.c:340:2. (bsc#1031254)\n\n - CVE-2016-10270: LibTIFF allowed remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 8' and libtiff/tif_read.c:523:22. (bsc#1031250)\n\n - CVE-2017-18013: In LibTIFF, there was a NULL pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.\n (bsc#1074317)\n\n - CVE-2017-7593: tif_read.c did not ensure that tif_rawdata is properly initialized, which might have allowed remote attackers to obtain sensitive information from process memory via a crafted image. (bsc#1033129)\n\n - CVE-2017-7595: The JPEGSetupEncode function in tiff_jpeg.c allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image. (bsc#1033127)\n\n - CVE-2017-7596: LibTIFF had an 'outside the range of representable values of type float' undefined behavior issue, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. (bsc#1033126)\n\n - CVE-2017-7597: tif_dirread.c had an 'outside the range of representable values of type float' undefined behavior issue, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. (bsc#1033120)\n\n - CVE-2017-7599: LibTIFF had an 'outside the range of representable values of type short' undefined behavior issue, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. (bsc#1033113)\n\n - CVE-2017-7600: LibTIFF had an 'outside the range of representable values of type unsigned char' undefined behavior issue, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. (bsc#1033112)\n\n - CVE-2017-7601: LibTIFF had a 'shift exponent too large for 64-bit type long' undefined behavior issue, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. (bsc#1033111)\n\n - CVE-2017-7602: LibTIFF had a signed integer overflow, which might have allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.\n (bsc#1033109)\n\n - Multiple divide by zero issues\n\n - CVE-2016-5314: Buffer overflow in the PixarLogDecode function in tif_pixarlog.c allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer with rgb2ycbcr. (bsc#987351 bsc#984808 bsc#984831)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2018-05-31T00:00:00", "title": "SUSE SLES11 Security Update : tiff (SUSE-SU-2018:1472-1)", "type": "nessus", "enchantments": {"score": {"modified": "2018-09-06T09:49:17", "vector": "NONE", "value": 6.8}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-5314", "CVE-2017-7597", "CVE-2016-10270", "CVE-2017-7601", "CVE-2017-18013", "CVE-2017-7600", "CVE-2016-5315", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-7599", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-09-05T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:libtiff3", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:tiff"], "id": "SUSE_SU-2018-1472-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=110258", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:1472-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(110258);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/09/05 15:02:27\");\n\n script_cve_id(\"CVE-2016-10267\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-5314\", \"CVE-2016-5315\", \"CVE-2017-18013\", \"CVE-2017-7593\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\");\n\n script_name(english:\"SUSE SLES11 Security Update : tiff (SUSE-SU-2018:1472-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for tiff fixes the following issues: Security issues \nfixed :\n\n - CVE-2016-5315: The setByteArray function in tif_dir.c\n allowed remote attackers to cause a denial of service\n (out-of-bounds read) via a crafted tiff image.\n (bsc#984809)\n\n - CVE-2016-10267: LibTIFF allowed remote attackers to\n cause a denial of service (divide-by-zero error and\n application crash) via a crafted TIFF image, related to\n libtiff/tif_ojpeg.c:816:8. (bsc#1017694)\n\n - CVE-2016-10269: LibTIFF allowed remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 512' and\n libtiff/tif_unix.c:340:2. (bsc#1031254)\n\n - CVE-2016-10270: LibTIFF allowed remote attackers to\n cause a denial of service (heap-based buffer over-read)\n or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 8' and\n libtiff/tif_read.c:523:22. (bsc#1031250)\n\n - CVE-2017-18013: In LibTIFF, there was a NULL pointer\n Dereference in the tif_print.c TIFFPrintDirectory\n function, as demonstrated by a tiffinfo crash.\n (bsc#1074317)\n\n - CVE-2017-7593: tif_read.c did not ensure that\n tif_rawdata is properly initialized, which might have\n allowed remote attackers to obtain sensitive information\n from process memory via a crafted image. (bsc#1033129)\n\n - CVE-2017-7595: The JPEGSetupEncode function in\n tiff_jpeg.c allowed remote attackers to cause a denial\n of service (divide-by-zero error and application crash)\n via a crafted image. (bsc#1033127)\n\n - CVE-2017-7596: LibTIFF had an 'outside the range of\n representable values of type float' undefined behavior\n issue, which might have allowed remote attackers to\n cause a denial of service (application crash) or\n possibly have unspecified other impact via a crafted\n image. (bsc#1033126)\n\n - CVE-2017-7597: tif_dirread.c had an 'outside the range\n of representable values of type float' undefined\n behavior issue, which might have allowed remote\n attackers to cause a denial of service (application\n crash) or possibly have unspecified other impact via a\n crafted image. (bsc#1033120)\n\n - CVE-2017-7599: LibTIFF had an 'outside the range of\n representable values of type short' undefined behavior\n issue, which might have allowed remote attackers to\n cause a denial of service (application crash) or\n possibly have unspecified other impact via a crafted\n image. (bsc#1033113)\n\n - CVE-2017-7600: LibTIFF had an 'outside the range of\n representable values of type unsigned char' undefined\n behavior issue, which might have allowed remote\n attackers to cause a denial of service (application\n crash) or possibly have unspecified other impact via a\n crafted image. (bsc#1033112)\n\n - CVE-2017-7601: LibTIFF had a 'shift exponent too large\n for 64-bit type long' undefined behavior issue, which\n might have allowed remote attackers to cause a denial of\n service (application crash) or possibly have unspecified\n other impact via a crafted image. (bsc#1033111)\n\n - CVE-2017-7602: LibTIFF had a signed integer overflow,\n which might have allowed remote attackers to cause a\n denial of service (application crash) or possibly have\n unspecified other impact via a crafted image.\n (bsc#1033109)\n\n - Multiple divide by zero issues\n\n - CVE-2016-5314: Buffer overflow in the PixarLogDecode\n function in tif_pixarlog.c allowed remote attackers to\n cause a denial of service (application crash) or\n possibly have unspecified other impact via a crafted\n TIFF image, as demonstrated by overwriting the\n vgetparent function pointer with rgb2ycbcr. (bsc#987351\n bsc#984808 bsc#984831)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1017694\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031250\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031254\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033109\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033111\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033112\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033120\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033126\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033127\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1033129\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1074317\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/984808\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/984809\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/984831\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/987351\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10267.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10269.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10270.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-5314.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-5315.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-18013.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7593.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7595.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7596.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7597.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7599.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7600.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7601.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-7602.html\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20181472-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b5d204f9\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 11-SP4:zypper in -t\npatch sdksp4-tiff-13631=1\n\nSUSE Linux Enterprise Server 11-SP4:zypper in -t patch\nslessp4-tiff-13631=1\n\nSUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch\ndbgsp4-tiff-13631=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtiff3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/05/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/05/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^(4)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP4\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"x86_64\", reference:\"libtiff3-32bit-3.8.2-141.169.6.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"s390x\", reference:\"libtiff3-32bit-3.8.2-141.169.6.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"libtiff3-3.8.2-141.169.6.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"tiff-3.8.2-141.169.6.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"tiff\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:43:09", "references": [], "pluginID": "108513", "description": "It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "reporter": "Tenable", "published": "2018-03-21T00:00:00", "title": "Ubuntu 14.04 LTS / 16.04 LTS : tiff vulnerabilities (USN-3602-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2017-9815", "CVE-2017-7597", "CVE-2016-10268", "CVE-2017-11335", "CVE-2016-10371", "CVE-2018-5784", "CVE-2017-7601", "CVE-2017-18013", "CVE-2017-7600", "CVE-2017-9936", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-12944", "CVE-2017-10688", "CVE-2017-13726", "CVE-2017-13727", "CVE-2017-9404", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-03-21T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:16.04", "p-cpe:/a:canonical:ubuntu_linux:libtiff-tools", "p-cpe:/a:canonical:ubuntu_linux:libtiff5", "cpe:/o:canonical:ubuntu_linux:14.04"], "id": "UBUNTU_USN-3602-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=108513", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-3602-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(108513);\n script_version(\"1.1\");\n script_cvs_date(\"Date: 2018/03/21 12:17:23\");\n\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\", \"CVE-2016-10371\", \"CVE-2017-10688\", \"CVE-2017-11335\", \"CVE-2017-12944\", \"CVE-2017-13726\", \"CVE-2017-13727\", \"CVE-2017-18013\", \"CVE-2017-7592\", \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\", \"CVE-2017-9403\", \"CVE-2017-9404\", \"CVE-2017-9815\", \"CVE-2017-9936\", \"CVE-2018-5784\");\n script_xref(name:\"USN\", value:\"3602-1\");\n\n script_name(english:\"Ubuntu 14.04 LTS / 16.04 LTS : tiff vulnerabilities (USN-3602-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that LibTIFF incorrectly handled certain malformed\nimages. If a user or automated system were tricked into opening a\nspecially crafted image, a remote attacker could crash the\napplication, leading to a denial of service, or possibly execute\narbitrary code with user privileges.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtiff-tools and / or libtiff5 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libtiff-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libtiff5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/03/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/03/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(14\\.04|16\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 14.04 / 16.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"14.04\", pkgname:\"libtiff-tools\", pkgver:\"4.0.3-7ubuntu0.8\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"libtiff5\", pkgver:\"4.0.3-7ubuntu0.8\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"libtiff-tools\", pkgver:\"4.0.6-1ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"libtiff5\", pkgver:\"4.0.6-1ubuntu0.3\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtiff-tools / libtiff5\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:07:38", "references": ["https://security.gentoo.org/glsa/201709-27"], "pluginID": "103486", "description": "The remote host is affected by the vulnerability described in GLSA-201709-27 (libTIFF: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in LibTIFF. Please review the referenced CVE identifiers for details.\n Impact :\n\n A remote attacker, by enticing the user to process a specially crafted TIFF file, could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, obtain sensitive information, or have other unspecified impacts.\n Workaround :\n\n There is no known workaround at this time.", "edition": 5, "reporter": "Tenable", "published": "2017-09-27T00:00:00", "title": "GLSA-201709-27 : libTIFF: Multiple vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-7597", "CVE-2016-10268", "CVE-2017-7601", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-5563", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2017-10-02T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:tiff"], "id": "GENTOO_GLSA-201709-27.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=103486", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201709-27.\n#\n# The advisory text is Copyright (C) 2001-2017 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(103486);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2017/10/02 21:12:27 $\");\n\n script_cve_id(\"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2017-5225\", \"CVE-2017-5563\", \"CVE-2017-7592\", \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\", \"CVE-2017-9403\");\n script_xref(name:\"GLSA\", value:\"201709-27\");\n\n script_name(english:\"GLSA-201709-27 : libTIFF: Multiple vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201709-27\n(libTIFF: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in LibTIFF. Please review\n the referenced CVE identifiers for details.\n \nImpact :\n\n A remote attacker, by enticing the user to process a specially crafted\n TIFF file, could possibly execute arbitrary code with the privileges of\n the process, cause a Denial of Service condition, obtain sensitive\n information, or have other unspecified impacts.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201709-27\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All LibTIFF users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=media-libs/tiff-4.0.8'\n Packages which depend on this library may need to be recompiled. Tools\n such as revdep-rebuild may assist in identifying some of these packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/09/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/09/27\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"media-libs/tiff\", unaffected:make_list(\"ge 4.0.8\"), vulnerable:make_list(\"lt 4.0.8\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libTIFF\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:48:20", "references": ["http://www.nessus.org/u?44836c88", "https://bugzilla.suse.com/1017691", "https://www.suse.com/security/cve/CVE-2016-5318.html", "https://bugzilla.suse.com/1046077", "https://www.suse.com/security/cve/CVE-2016-9536.html", "https://www.suse.com/security/cve/CVE-2016-10095.html", "https://www.suse.com/security/cve/CVE-2016-9453.html", "https://bugzilla.suse.com/1017692", "https://bugzilla.suse.com/1011845", "https://bugzilla.suse.com/1048937", "https://www.suse.com/security/cve/CVE-2017-17973.html", "https://bugzilla.suse.com/1017688", "https://www.suse.com/security/cve/CVE-2016-3945.html", "https://www.suse.com/security/cve/CVE-2015-7554.html", "https://bugzilla.suse.com/960341", "https://www.suse.com/security/cve/CVE-2017-9935.html", "https://bugzilla.suse.com/1007280", "https://bugzilla.suse.com/1031255", "https://www.suse.com/security/cve/CVE-2016-5652.html", "https://www.suse.com/security/cve/CVE-2017-11335.html", "https://bugzilla.suse.com/983436", "https://www.suse.com/security/cve/CVE-2016-10268.html", "https://bugzilla.suse.com/1074318", "https://bugzilla.suse.com/1011107", "https://bugzilla.suse.com/1017690"], "pluginID": "109674", "description": "This update for tiff fixes the following issues :\n\n - CVE-2016-9453: The t2p_readwrite_pdf_image_tile function allowed remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a JPEG file with a TIFFTAG_JPEGTABLES of length one (bsc#1011107).\n\n - CVE-2016-5652: An exploitable heap-based buffer overflow existed in the handling of TIFF images in the TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution.\n Vulnerability can be triggered via a saved TIFF file delivered by other means (bsc#1007280).\n\n - CVE-2017-11335: There is a heap-based buffer overflow in tools/tiff2pdf.c via a PlanarConfig=Contig image, which caused a more than one hundred bytes out-of-bounds write (related to the ZIPDecode function in tif_zip.c). A crafted input may lead to a remote denial of service attack or an arbitrary code execution attack (bsc#1048937).\n\n - CVE-2016-9536: tools/tiff2pdf.c had an out-of-bounds write vulnerabilities in heap allocated buffers in t2p_process_jpeg_strip(). Reported as MSVR 35098, aka 't2p_process_jpeg_strip heap-buffer-overflow.' (bsc#1011845)\n\n - CVE-2017-9935: In LibTIFF, there was a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2p_free, memory corruption in t2p_readwrite_pdf_image, or a double free in t2p_free. Given these possibilities, it probably could cause arbitrary code execution (bsc#1046077).\n\n - CVE-2017-17973: There is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. (bsc#1074318)\n\n - CVE-2015-7554: The _TIFFVGetField function in tif_dir.c allowed attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image (bsc#960341).\n\n - CVE-2016-5318: Stack-based buffer overflow in the\n _TIFFVGetField function allowed remote attackers to crash the application via a crafted tiff (bsc#983436).\n\n - CVE-2016-10095: Stack-based buffer overflow in the\n _TIFFVGetField function in tif_dir.c allowed remote attackers to cause a denial of service (crash) via a crafted TIFF file (bsc#1017690,).\n\n - CVE-2016-10268: tools/tiffcp.c allowed remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to 'READ of size 78490' and libtiff/tif_unix.c:115:23 (bsc#1031255)\n\n - An overlapping of memcpy parameters was fixed which could lead to content corruption (bsc#1017691).\n\n - Fixed an invalid memory read which could lead to a crash (bsc#1017692).\n\n - Fixed a NULL pointer dereference in TIFFReadRawData (tiffinfo.c) that could crash the decoder (bsc#1017688).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2018-05-10T00:00:00", "title": "SUSE SLES11 Security Update : tiff (SUSE-SU-2018:1179-1)", "type": "nessus", "enchantments": {"score": {"modified": "2018-09-01T23:48:20", "vector": "NONE", "value": 6.8}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-9453", "CVE-2016-9536", "CVE-2016-5318", "CVE-2017-17973", "CVE-2016-10268", "CVE-2016-10095", "CVE-2017-11335", "CVE-2016-5652", "CVE-2015-7554", "CVE-2017-9935", "CVE-2016-3945"], "modified": "2018-08-02T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:libtiff3", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:tiff"], "id": "SUSE_SU-2018-1179-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=109674", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:1179-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(109674);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/08/02 16:42:00\");\n\n script_cve_id(\"CVE-2015-7554\", \"CVE-2016-10095\", \"CVE-2016-10268\", \"CVE-2016-3945\", \"CVE-2016-5318\", \"CVE-2016-5652\", \"CVE-2016-9453\", \"CVE-2016-9536\", \"CVE-2017-11335\", \"CVE-2017-17973\", \"CVE-2017-9935\");\n\n script_name(english:\"SUSE SLES11 Security Update : tiff (SUSE-SU-2018:1179-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for tiff fixes the following issues :\n\n - CVE-2016-9453: The t2p_readwrite_pdf_image_tile function\n allowed remote attackers to cause a denial of service\n (out-of-bounds write and crash) or possibly execute\n arbitrary code via a JPEG file with a TIFFTAG_JPEGTABLES\n of length one (bsc#1011107).\n\n - CVE-2016-5652: An exploitable heap-based buffer overflow\n existed in the handling of TIFF images in the TIFF2PDF\n tool. A crafted TIFF document can lead to a heap-based\n buffer overflow resulting in remote code execution.\n Vulnerability can be triggered via a saved TIFF file\n delivered by other means (bsc#1007280).\n\n - CVE-2017-11335: There is a heap-based buffer overflow in\n tools/tiff2pdf.c via a PlanarConfig=Contig image, which\n caused a more than one hundred bytes out-of-bounds write\n (related to the ZIPDecode function in tif_zip.c). A\n crafted input may lead to a remote denial of service\n attack or an arbitrary code execution attack\n (bsc#1048937).\n\n - CVE-2016-9536: tools/tiff2pdf.c had an out-of-bounds\n write vulnerabilities in heap allocated buffers in\n t2p_process_jpeg_strip(). Reported as MSVR 35098, aka\n 't2p_process_jpeg_strip heap-buffer-overflow.'\n (bsc#1011845)\n\n - CVE-2017-9935: In LibTIFF, there was a heap-based buffer\n overflow in the t2p_write_pdf function in\n tools/tiff2pdf.c. This heap overflow could lead to\n different damages. For example, a crafted TIFF document\n can lead to an out-of-bounds read in TIFFCleanup, an\n invalid free in TIFFClose or t2p_free, memory corruption\n in t2p_readwrite_pdf_image, or a double free in\n t2p_free. Given these possibilities, it probably could\n cause arbitrary code execution (bsc#1046077).\n\n - CVE-2017-17973: There is a heap-based use-after-free in\n the t2p_writeproc function in tiff2pdf.c. (bsc#1074318)\n\n - CVE-2015-7554: The _TIFFVGetField function in tif_dir.c\n allowed attackers to cause a denial of service (invalid\n memory write and crash) or possibly have unspecified\n other impact via crafted field data in an extension tag\n in a TIFF image (bsc#960341).\n\n - CVE-2016-5318: Stack-based buffer overflow in the\n _TIFFVGetField function allowed remote attackers to\n crash the application via a crafted tiff (bsc#983436).\n\n - CVE-2016-10095: Stack-based buffer overflow in the\n _TIFFVGetField function in tif_dir.c allowed remote\n attackers to cause a denial of service (crash) via a\n crafted TIFF file (bsc#1017690,).\n\n - CVE-2016-10268: tools/tiffcp.c allowed remote attackers\n to cause a denial of service (integer underflow and\n heap-based buffer under-read) or possibly have\n unspecified other impact via a crafted TIFF image,\n related to 'READ of size 78490' and\n libtiff/tif_unix.c:115:23 (bsc#1031255)\n\n - An overlapping of memcpy parameters was fixed which\n could lead to content corruption (bsc#1017691).\n\n - Fixed an invalid memory read which could lead to a crash\n (bsc#1017692).\n\n - Fixed a NULL pointer dereference in TIFFReadRawData\n (tiffinfo.c) that could crash the decoder (bsc#1017688).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1007280\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1011107\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1011845\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1017688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1017690\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1017691\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1017692\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1031255\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1046077\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1048937\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1074318\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/960341\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/983436\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-7554.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10095.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10268.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-3945.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-5318.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-5652.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-9453.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-9536.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-11335.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-17973.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2017-9935.html\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20181179-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?44836c88\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 11-SP4:zypper in -t\npatch sdksp4-tiff-13594=1\n\nSUSE Linux Enterprise Server 11-SP4:zypper in -t patch\nslessp4-tiff-13594=1\n\nSUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch\ndbgsp4-tiff-13594=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtiff3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:tiff\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/05/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/05/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^(4)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP4\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"x86_64\", reference:\"libtiff3-32bit-3.8.2-141.169.3.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"s390x\", reference:\"libtiff3-32bit-3.8.2-141.169.3.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"libtiff3-3.8.2-141.169.3.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"tiff-3.8.2-141.169.3.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"tiff\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "suse": [{"lastseen": "2017-04-26T17:19:01", "references": ["https://bugzilla.suse.com/1031263", "https://bugzilla.suse.com/1031250", "https://bugzilla.suse.com/1031254", "https://bugzilla.suse.com/1031262", "https://bugzilla.suse.com/1031255", "https://bugzilla.suse.com/1031247", "https://bugzilla.suse.com/1031249"], "affectedPackage": [{"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "tiff", "packageFilename": "tiff-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "tiff", "packageFilename": "tiff-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "tiff", "packageFilename": "tiff-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff-devel-32bit", "packageFilename": "libtiff-devel-32bit-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "tiff", "packageFilename": "tiff-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff-devel-32bit", "packageFilename": "libtiff-devel-32bit-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "libtiff-devel", "packageFilename": "libtiff-devel-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "libtiff5-debuginfo", "packageFilename": "libtiff5-debuginfo-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "i586", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-17.3.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "tiff-debuginfo", "packageFilename": "tiff-debuginfo-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff5-debuginfo-32bit", "packageFilename": "libtiff5-debuginfo-32bit-4.0.7-18.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.2", "packageVersion": "4.0.7-17.3.1", "arch": "x86_64", "packageName": "libtiff5", "packageFilename": "libtiff5-4.0.7-17.3.1.x86_64.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "i586", "packageName": "tiff-debugsource", "packageFilename": "tiff-debugsource-4.0.7-18.1.i586.rpm", "operator": "lt"}, {"OS": "openSUSE Leap", "OSVersion": "42.1", "packageVersion": "4.0.7-18.1", "arch": "x86_64", "packageName": "libtiff5-32bit", "packageFilename": "libtiff5-32bit-4.0.7-18.1.x86_64.rpm", "operator": "lt"}], "edition": 1, "description": "This update for tiff fixes the following issues:\n\n Security issues fixed:\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer overflow) or possibly have unspecified\n other impact via a crafted TIFF image, related to "WRITE of size 2048"\n and libtiff/tif_next.c:64:9 (bsc#1031247).\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote\n attackers to cause a denial of service (heap-based buffer over-read and\n buffer overflow) or possibly have unspecified other impact via a crafted\n TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13\n (bsc#1031249).\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to "READ of size 8" and\n libtiff/tif_read.c:523:22 (bsc#1031250).\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to "READ of size 512" and\n libtiff/tif_unix.c:340:2 (bsc#1031254).\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers\n to cause a denial of service (integer underflow and heap-based buffer\n under-read) or possibly have unspecified other impact via a crafted TIFF\n image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23\n (bsc#1031255).\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).\n\n This update was imported from the SUSE:SLE-12:Update update project.\n\n", "reporter": "Suse", "published": "2017-04-26T18:11:51", "type": "suse", "title": "Security update for tiff (important)", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2017-04-26T18:11:51", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-04/msg00032.html", "id": "OPENSUSE-SU-2017:1108-1", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2018-09-01T23:41:37", "references": ["2017-ab3acddd21", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KLH7V5OQSTAJWJSTJANTEQ4WZWONWL4W"], "pluginID": "1361412562310872558", "description": "Check the version of libtiff", "edition": 4, "reporter": "Copyright (C) 2017 Greenbone Networks GmbH", "published": "2017-04-12T00:00:00", "title": "Fedora Update for libtiff FEDORA-2017-ab3acddd21", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310872558", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310872558", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for libtiff FEDORA-2017-ab3acddd21\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.872558\");\n script_version(\"$Revision: 6634 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 09:32:24 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2017-04-12 06:39:43 +0200 (Wed, 12 Apr 2017)\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\",\n \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libtiff FEDORA-2017-ab3acddd21\");\n script_tag(name: \"summary\", value: \"Check the version of libtiff\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of \n detect NVT and check if the version is vulnerable or not.\"); \n script_tag(name: \"insight\", value: \"The libtiff package contains a library of \n functions for manipulating TIFF (Tagged Image File Format) image format files. \n TIFF is a widely used file format for bitmapped images. TIFF files usually end \n in the .tif extension and they are often quite large. The libtiff package should \n be installed if you need to manipulate TIFF format image files. \"); \n script_tag(name: \"affected\", value: \"libtiff on Fedora 25\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2017-ab3acddd21\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KLH7V5OQSTAJWJSTJANTEQ4WZWONWL4W\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC25\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtiff\", rpm:\"libtiff~4.0.7~4.fc25\", rls:\"FC25\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-12T12:43:08", "references": ["2017:1108_1"], "pluginID": "1361412562310851541", "description": "Check the version of tiff", "edition": 6, "reporter": "Copyright (C) 2017 Greenbone Networks GmbH", "published": "2017-04-27T00:00:00", "title": "SuSE Update for tiff openSUSE-SU-2017:1108-1 (tiff)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10272", "CVE-2016-10270", "CVE-2016-10271", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-11-09T00:00:00", "id": "OPENVAS:1361412562310851541", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310851541", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2017_1108_1.nasl 12284 2018-11-09 12:37:21Z cfischer $\n#\n# SuSE Update for tiff openSUSE-SU-2017:1108-1 (tiff)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.851541\");\n script_version(\"$Revision: 12284 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-09 13:37:21 +0100 (Fri, 09 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2017-04-27 07:17:10 +0200 (Thu, 27 Apr 2017)\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\",\n \"CVE-2016-10270\", \"CVE-2016-10271\", \"CVE-2016-10272\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for tiff openSUSE-SU-2017:1108-1 (tiff)\");\n script_tag(name:\"summary\", value:\"Check the version of tiff\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"This update for tiff fixes the following issues:\n\n Security issues fixed:\n\n - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer overflow) or possibly have unspecified\n other impact via a crafted TIFF image, related to 'WRITE of size 2048'\n and libtiff/tif_next.c:64:9 (bsc#1031247).\n\n - CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote\n attackers to cause a denial of service (heap-based buffer over-read and\n buffer overflow) or possibly have unspecified other impact via a crafted\n TIFF image, related to 'READ of size 1' and libtiff/tif_fax3.c:413:13\n (bsc#1031249).\n\n - CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to 'READ of size 8' and\n libtiff/tif_read.c:523:22 (bsc#1031250).\n\n - CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (heap-based buffer over-read) or possibly have unspecified\n other impact via a crafted TIFF image, related to 'READ of size 512' and\n libtiff/tif_unix.c:340:2 (bsc#1031254).\n\n - CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers\n to cause a denial of service (integer underflow and heap-based buffer\n under-read) or possibly have unspecified other impact via a crafted TIFF\n image, related to 'READ of size 78490' and libtiff/tif_unix.c:115:23\n (bsc#1031255).\n\n - CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_ojpeg.c:816:8 (bsc#1031262).\n\n - CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial\n of service (divide-by-zero error and application crash) via a crafted\n TIFF image, related to libtiff/tif_read.c:351:22. (bsc#1031263).\n\n This update was imported from the SUSE:SLE-12:Update update project.\");\n script_tag(name:\"affected\", value:\"tiff on openSUSE Leap 42.2, openSUSE Leap 42.1\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2017:1108_1\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=(openSUSELeap42\\.2|openSUSELeap42\\.1)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\nres = \"\";\n\nif(release == \"openSUSELeap42.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtiff-devel\", rpm:\"libtiff-devel~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5\", rpm:\"libtiff5~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-debuginfo\", rpm:\"libtiff5-debuginfo~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff\", rpm:\"tiff~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff-debuginfo\", rpm:\"tiff-debuginfo~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff-debugsource\", rpm:\"tiff-debugsource~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff-devel-32bit\", rpm:\"libtiff-devel-32bit~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-32bit\", rpm:\"libtiff5-32bit~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-debuginfo-32bit\", rpm:\"libtiff5-debuginfo-32bit~4.0.7~17.3.1\", rls:\"openSUSELeap42.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"openSUSELeap42.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtiff-devel\", rpm:\"libtiff-devel~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5\", rpm:\"libtiff5~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-debuginfo\", rpm:\"libtiff5-debuginfo~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff\", rpm:\"tiff~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff-debuginfo\", rpm:\"tiff-debuginfo~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"tiff-debugsource\", rpm:\"tiff-debugsource~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff-devel-32bit\", rpm:\"libtiff-devel-32bit~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-32bit\", rpm:\"libtiff5-32bit~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtiff5-debuginfo-32bit\", rpm:\"libtiff5-debuginfo-32bit~4.0.7~18.1\", rls:\"openSUSELeap42.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:40:01", "references": ["https://lists.debian.org/debian-lts-announce/2017/03/msg00035.html"], "pluginID": "1361412562310890877", "description": "libtiff is vulnerable to multiple buffer overflows and integer overflows\nthat can lead to application crashes (denial of service) or worse.\n\nCVE-2016-10266\n\nInteger overflow that can lead to divide-by-zero in\nTIFFReadEncodedStrip (tif_read.c).\n\nCVE-2016-10267\n\nDivide-by-zero error in OJPEGDecodeRaw (tif_ojpeg.c).\n\nCVE-2016-10268\n\nHeap-based buffer overflow in TIFFReverseBits (tif_swab.c).\n\nCVE-2016-10269\n\nHeap-based buffer overflow in _TIFFmemcpy (tif_unix.c).", "edition": 7, "reporter": "Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net", "published": "2018-01-12T00:00:00", "title": "Debian LTS Advisory ([SECURITY] [DLA 877-1] tiff security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-07-10T00:00:00", "id": "OPENVAS:1361412562310890877", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310890877", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: deb_dla_877.nasl 10474 2018-07-10 08:12:26Z cfischer $\n#\n# Auto-generated from advisory DLA 877-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.890877\");\n script_version(\"$Revision: 10474 $\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\");\n script_name(\"Debian LTS Advisory ([SECURITY] [DLA 877-1] tiff security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-10 10:12:26 +0200 (Tue, 10 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-01-12 00:00:00 +0100 (Fri, 12 Jan 2018)\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2017/03/msg00035.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB7\\.[0-9]+\");\n script_tag(name:\"affected\", value:\"tiff on Debian Linux\");\n script_tag(name:\"insight\", value:\"libtiff is a library providing support for the Tag Image File Format\n(TIFF), a widely used format for storing image data.\");\n script_tag(name:\"solution\", value:\"For Debian 7 'Wheezy', these problems have been fixed in version\n4.0.2-6+deb7u11.\n\nWe recommend that you upgrade your tiff packages.\");\n script_tag(name:\"summary\", value:\"libtiff is vulnerable to multiple buffer overflows and integer overflows\nthat can lead to application crashes (denial of service) or worse.\n\nCVE-2016-10266\n\nInteger overflow that can lead to divide-by-zero in\nTIFFReadEncodedStrip (tif_read.c).\n\nCVE-2016-10267\n\nDivide-by-zero error in OJPEGDecodeRaw (tif_ojpeg.c).\n\nCVE-2016-10268\n\nHeap-based buffer overflow in TIFFReverseBits (tif_swab.c).\n\nCVE-2016-10269\n\nHeap-based buffer overflow in _TIFFmemcpy (tif_unix.c).\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtiff-doc\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-opengl\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-alt-dev\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5\", ver:\"4.0.2-6+deb7u11\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:41:07", "references": ["http://www.debian.org/security/2017/dsa-3844.html"], "pluginID": "1361412562310703844", "description": "Multiple vulnerabilities have been discovered in the libtiff library and\nthe included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.", "edition": 3, "reporter": "Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net", "published": "2017-05-03T00:00:00", "title": "Debian Security Advisory DSA 3844-1 (tiff - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2017-7597", "CVE-2016-3658", "CVE-2016-10270", "CVE-2017-7601", "CVE-2016-9535", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310703844", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703844", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3844.nasl 9356 2018-04-06 07:17:02Z cfischer $\n# Auto-generated from advisory DSA 3844-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703844\");\n script_version(\"$Revision: 9356 $\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-3658\", \"CVE-2016-9535\", \"CVE-2017-5225\", \"CVE-2017-7592\", \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\");\n script_name(\"Debian Security Advisory DSA 3844-1 (tiff - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2018-04-06 09:17:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name: \"creation_date\", value: \"2017-05-03 00:00:00 +0200 (Wed, 03 May 2017)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2017/dsa-3844.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"tiff on Debian Linux\");\n script_tag(name: \"insight\", value: \"libtiff is a library providing support for the Tag Image File Format\n(TIFF), a widely used format for storing image data.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (jessie), these problems have been fixed in\nversion 4.0.3-12.3+deb8u3.\n\nFor the upcoming stable distribution (stretch), these problems have been\nfixed in version 4.0.7-6.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 4.0.7-6.\n\nWe recommend that you upgrade your tiff packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in the libtiff library and\nthe included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtiff-doc\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-opengl\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-doc\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-opengl\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:57:54", "references": ["http://www.debian.org/security/2017/dsa-3844.html"], "pluginID": "703844", "description": "Multiple vulnerabilities have been discovered in the libtiff library and\nthe included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.", "edition": 2, "reporter": "Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net", "published": "2017-05-03T00:00:00", "title": "Debian Security Advisory DSA 3844-1 (tiff - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2017-7597", "CVE-2016-3658", "CVE-2016-10270", "CVE-2017-7601", "CVE-2016-9535", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703844", "id": "OPENVAS:703844", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3844.nasl 6607 2017-07-07 12:04:25Z cfischer $\n# Auto-generated from advisory DSA 3844-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703844);\n script_version(\"$Revision: 6607 $\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10269\", \"CVE-2016-10270\", \"CVE-2016-3658\", \"CVE-2016-9535\", \"CVE-2017-5225\", \"CVE-2017-7592\", \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\", \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\", \"CVE-2017-7601\", \"CVE-2017-7602\");\n script_name(\"Debian Security Advisory DSA 3844-1 (tiff - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-07 14:04:25 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2017-05-03 00:00:00 +0200 (Wed, 03 May 2017)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2017/dsa-3844.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"tiff on Debian Linux\");\n script_tag(name: \"insight\", value: \"libtiff is a library providing support for the Tag Image File Format\n(TIFF), a widely used format for storing image data.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (jessie), these problems have been fixed in\nversion 4.0.3-12.3+deb8u3.\n\nFor the upcoming stable distribution (stretch), these problems have been\nfixed in version 4.0.7-6.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 4.0.7-6.\n\nWe recommend that you upgrade your tiff packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in the libtiff library and\nthe included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtiff-doc\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-opengl\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:i386\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:amd64\", ver:\"4.0.3-12.3+deb8u3\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-doc\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-opengl\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiff5-dev:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:i386\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtiffxx5:amd64\", ver:\"4.0.7-6\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:38:42", "references": ["https://usn.ubuntu.com/usn/usn-3602-1", "3602-1"], "pluginID": "1361412562310812582", "description": "Check the version of tiff", "edition": 6, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-03-21T00:00:00", "title": "Ubuntu Update for tiff USN-3602-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10266", "CVE-2017-9815", "CVE-2017-7597", "CVE-2016-10268", "CVE-2017-11335", "CVE-2016-10371", "CVE-2018-5784", "CVE-2017-7601", "CVE-2017-18013", "CVE-2017-7600", "CVE-2017-9936", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-12944", "CVE-2017-10688", "CVE-2017-13726", "CVE-2017-13727", "CVE-2017-9404", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310812582", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812582", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_3602_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for tiff USN-3602-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812582\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-21 11:17:10 +0100 (Wed, 21 Mar 2018)\");\n script_cve_id(\"CVE-2016-10266\", \"CVE-2016-10267\", \"CVE-2016-10268\", \"CVE-2016-10269\",\n \"CVE-2016-10371\", \"CVE-2017-10688\", \"CVE-2017-11335\", \"CVE-2017-12944\",\n \"CVE-2017-13726\", \"CVE-2017-13727\", \"CVE-2017-18013\", \"CVE-2017-7592\",\n \"CVE-2017-7593\", \"CVE-2017-7594\", \"CVE-2017-7595\", \"CVE-2017-7596\",\n \"CVE-2017-7597\", \"CVE-2017-7598\", \"CVE-2017-7599\", \"CVE-2017-7600\",\n \"CVE-2017-7601\", \"CVE-2017-7602\", \"CVE-2017-9403\", \"CVE-2017-9404\",\n \"CVE-2017-9815\", \"CVE-2017-9936\", \"CVE-2018-5784\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for tiff USN-3602-1\");\n script_tag(name:\"summary\", value:\"Check the version of tiff\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"It was discovered that LibTIFF incorrectly\nhandled certain malformed images. If a user or automated system were tricked into\nopening a specially crafted image, a remote attacker could crash the application,\nleading to a denial of service, or possibly execute arbitrary code with user\nprivileges.\");\n script_tag(name:\"affected\", value:\"tiff on Ubuntu 16.04 LTS,\n Ubuntu 14.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n\n script_xref(name:\"USN\", value:\"3602-1\");\n script_xref(name:\"URL\", value:\"https://usn.ubuntu.com/usn/usn-3602-1\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.04 LTS|16\\.04 LTS)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.3-7ubuntu0.8\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.3-7ubuntu0.8\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.3-7ubuntu0.8\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libtiff-tools\", ver:\"4.0.6-1ubuntu0.3\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtiff5:amd64\", ver:\"4.0.6-1ubuntu0.3\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtiff5:i386\", ver:\"4.0.6-1ubuntu0.3\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cve": [{"lastseen": "2017-04-18T15:59:10", "references": ["https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a", "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "http://www.securityfocus.com/bid/97197"], "edition": 1, "description": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to \"WRITE of size 2048\" and libtiff/tif_next.c:64:9.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10272", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10272"], "scanner": [], "modified": "2017-03-30T21:59:00", "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10272", "id": "CVE-2016-10272", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-11-04T10:53:20", "references": ["http://www.securityfocus.com/bid/97200", "https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018", "http://www.debian.org/security/2017/dsa-3844", "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/"], "edition": 2, "description": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 8\" and libtiff/tif_read.c:523:22.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10270", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10270"], "scanner": [], "modified": "2017-11-03T21:29:17", "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10270", "id": "CVE-2016-10270", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-03-22T11:29:02", "references": ["https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero", "https://usn.ubuntu.com/3602-1/", "https://security.gentoo.org/glsa/201709-27", "https://github.com/vadz/libtiff/commit/43bc256d8ae44b92d2734a3c5bc73957a4d7c1ec", "http://www.debian.org/security/2017/dsa-3844", "http://www.securityfocus.com/bid/97117"], "edition": 4, "description": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10267", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10267"], "scanner": [], "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "modified": "2018-03-21T21:29:00", "id": "CVE-2016-10267", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10267", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-03-22T11:29:02", "references": ["https://github.com/vadz/libtiff/commit/1044b43637fa7f70fb19b93593777b78bd20da86", "http://www.securityfocus.com/bid/97201", "https://usn.ubuntu.com/3602-1/", "http://www.debian.org/security/2017/dsa-3844", "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/"], "edition": 3, "description": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 512\" and libtiff/tif_unix.c:340:2.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10269", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10269"], "scanner": [], "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "modified": "2018-03-21T21:29:00", "id": "CVE-2016-10269", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10269", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-03-22T11:29:02", "references": ["https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero", "http://www.securityfocus.com/bid/97115", "https://usn.ubuntu.com/3602-1/", "https://github.com/vadz/libtiff/commit/438274f938e046d33cb0e1230b41da32ffe223e1", "http://www.debian.org/security/2017/dsa-3844"], "edition": 3, "description": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10266", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10266"], "scanner": [], "modified": "2018-03-21T21:29:00", "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10266", "id": "CVE-2016-10266", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-03-22T11:29:02", "references": ["https://usn.ubuntu.com/3602-1/", "https://security.gentoo.org/glsa/201709-27", "https://github.com/vadz/libtiff/commit/5397a417e61258c69209904e652a1f409ec3b9df", "http://www.securityfocus.com/bid/97202", "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/"], "edition": 3, "description": "tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 78490\" and libtiff/tif_unix.c:115:23.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10268", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10268"], "scanner": [], "modified": "2018-03-21T21:29:00", "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10268", "id": "CVE-2016-10268", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-18T15:59:10", "references": ["https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a", "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "http://www.securityfocus.com/bid/97199"], "edition": 1, "description": "tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 1\" and libtiff/tif_fax3.c:413:13.", "reporter": "NVD", "published": "2017-03-24T15:59:00", "title": "CVE-2016-10271", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2016-10271"], "scanner": [], "cpe": ["cpe:/a:libtiff:libtiff:4.0.7"], "modified": "2017-03-30T21:59:00", "id": "CVE-2016-10271", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10271", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-18T13:49:35", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "4.0.2-6+deb7u11", "arch": "all", "packageFilename": "tiff_4.0.2-6+deb7u11_all.deb", "packageName": "tiff", "operator": "lt"}], "description": "Package : tiff\nVersion : 4.0.2-6+deb7u11\nCVE ID : CVE-2016-10266 CVE-2016-10267 CVE-2016-10268 CVE-2016-10269\n\nlibtiff is vulnerable to multiple buffer overflows and integer overflows\nthat can lead to application crashes (denial of service) or worse.\n\nCVE-2016-10266\n\n Integer overflow that can lead to divide-by-zero in\n TIFFReadEncodedStrip (tif_read.c).\n\nCVE-2016-10267\n\n Divide-by-zero error in OJPEGDecodeRaw (tif_ojpeg.c).\n \nCVE-2016-10268\n\n Heap-based buffer overflow in TIFFReverseBits (tif_swab.c).\n\nCVE-2016-10269\n\n Heap-based buffer overflow in _TIFFmemcpy (tif_unix.c).\n\nFor Debian 7 "Wheezy", these problems have been fixed in version\n4.0.2-6+deb7u11.\n\nWe recommend that you upgrade your tiff packages.\n\nFurther information about Debian LTS security advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://wiki.debian.org/LTS\n\n-- \nRapha\u00ebl Hertzog \u25c8 Debian Developer\n\nSupport Debian LTS: https://www.freexian.com/services/debian-lts.html\nLearn to master Debian: https://debian-handbook.info/get/\n", "edition": 2, "reporter": "Debian", "published": "2017-03-28T14:06:02", "title": "[SECURITY] [DLA 877-1] tiff security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-18T13:49:35", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-10266", "CVE-2016-10268", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2017-03-28T14:06:02", "id": "DEBIAN:DLA-877-1:C34DC", "href": "https://lists.debian.org/debian-lts-announce/2017/debian-lts-announce-201703/msg00035.html", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:06", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiff-doc_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiff-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "tiff_4.0.3-12.3+deb8u3_all.deb", "packageName": "tiff", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiff-opengl_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiff-opengl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiff-tools_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiff-tools", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiff5_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiff5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiff5-dev_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiff5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "8", "packageVersion": "4.0.3-12.3+deb8u3", "arch": "all", "packageFilename": "libtiffxx5_4.0.3-12.3+deb8u3_all.deb", "packageName": "libtiffxx5", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3844-1 security@debian.org\nhttps://www.debian.org/security/ Moritz Muehlenhoff\nMay 03, 2017 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : tiff\nCVE ID : CVE-2016-3658 CVE-2016-9535 CVE-2016-10266\n CVE-2016-10267 CVE-2016-10269 CVE-2016-10270\n\t\t CVE-2017-5225 CVE-2017-7592 CVE-2017-7593\n\t\t CVE-2017-7594 CVE-2017-7595 CVE-2017-7596\n\t\t CVE-2017-7597 CVE-2017-7598 CVE-2017-7599\n\t\t CVE-2017-7600 CVE-2017-7601 CVE-2017-7602\n\nMultiple vulnerabilities have been discovered in the libtiff library and\nthe included tools, which may result in denial of service, memory\ndisclosure or the execution of arbitrary code.\n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 4.0.3-12.3+deb8u3.\n\nFor the upcoming stable distribution (stretch), these problems have been\nfixed in version 4.0.7-6.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 4.0.7-6.\n\nWe recommend that you upgrade your tiff packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2017-05-03T21:06:40", "title": "[SECURITY] [DSA 3844-1] tiff security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:06", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-10266", "CVE-2017-7597", "CVE-2016-3658", "CVE-2016-10270", "CVE-2017-7601", "CVE-2016-9535", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2017-05-03T21:06:40", "id": "DEBIAN:DSA-3844-1:F751B", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2017/msg00103.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:08:15", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9403", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10268", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7595", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9815", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7594", "https://people.canonical.com/~ubuntu-security/cve/CVE-2018-5784", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10371", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9936", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7596", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7593", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7597", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9404", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7598", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-11335", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-13726", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-10688", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-12944", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7599", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7592", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10269", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-18013", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7602", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7601", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10267", "https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10266", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7600", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-13727"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "16.04", "packageVersion": "4.0.6-1ubuntu0.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtiff-tools", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "4.0.3-7ubuntu0.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtiff-tools", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "16.04", "packageVersion": "4.0.6-1ubuntu0.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtiff5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "4.0.3-7ubuntu0.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtiff5", "operator": "lt"}], "description": "It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges.", "edition": 3, "reporter": "Ubuntu", "published": "2018-03-20T00:00:00", "title": "LibTIFF vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2016-10266", "CVE-2017-9815", "CVE-2017-7597", "CVE-2016-10268", "CVE-2017-11335", "CVE-2016-10371", "CVE-2018-5784", "CVE-2017-7601", "CVE-2017-18013", "CVE-2017-7600", "CVE-2017-9936", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-12944", "CVE-2017-10688", "CVE-2017-13726", "CVE-2017-13727", "CVE-2017-9404", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-03-20T00:00:00", "id": "USN-3602-1", "href": "https://usn.ubuntu.com/3602-1/", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cloudfoundry": [{"lastseen": "2018-09-07T03:26:05", "references": [], "description": "# \n\n# Severity\n\nMedium\n\n# Vendor\n\nCanonical Ubuntu\n\n# Versions Affected\n\n * Canonical Ubuntu 14.04\n\n# Description\n\n# Affected Cloud Foundry Products and Versions\n\n_Severity is medium unless otherwise noted._\n\n * All versions of Cloud Foundry cflinuxfs2 prior to 1.192.0\n\n# Mitigation\n\nOSS users are strongly encouraged to follow one of the mitigations below:\n\n * The Cloud Foundry project recommends that Cloud Foundry deployments run with cflinuxfs2 version 1.192.0 or later.\n\n# References\n\n * [USN-3602-1](<https://usn.ubuntu.com/3602-1/>)\n * [CVE-2016-10266](<https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10266>)\n * [CVE-2016-10267](<https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10267>)\n * [CVE-2016-10268](<https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10268>)\n * [CVE-2016-10269](<https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10269>)\n * [CVE-2016-10371](<https://people.canonical.com/~ubuntu-security/cve/CVE-2016-10371>)\n * [CVE-2017-10688](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-10688>)\n * [CVE-2017-11335](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-11335>)\n * [CVE-2017-12944](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-12944>)\n * [CVE-2017-13726](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-13726>)\n * [CVE-2017-13727](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-13727>)\n * [CVE-2017-18013](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-18013>)\n * [CVE-2017-7592](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7592>)\n * [CVE-2017-7593](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7593>)\n * [CVE-2017-7594](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7594>)\n * [CVE-2017-7595](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7595>)\n * [CVE-2017-7596](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7596>)\n * [CVE-2017-7597](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7597>)\n * [CVE-2017-7598](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7598>)\n * [CVE-2017-7599](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7599>)\n * [CVE-2017-7600](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7600>)\n * [CVE-2017-7601](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7601>)\n * [CVE-2017-7602](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7602>)\n * [CVE-2017-9403](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9403>)\n * [CVE-2017-9404](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9404>)\n * [CVE-2017-9815](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9815>)\n * [CVE-2017-9936](<https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9936>)\n * [CVE-2018-5784](<https://people.canonical.com/~ubuntu-security/cve/CVE-2018-5784>)\n", "edition": 4, "reporter": "Cloud Foundry", "published": "2018-05-02T00:00:00", "title": "USN-3602-1: LibTIFF vulnerabilities | Cloud Foundry", "type": "cloudfoundry", "enchantments": {"score": {"modified": "2018-09-07T03:26:05", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2016-10266", "CVE-2017-9815", "CVE-2017-7597", "CVE-2016-10268", "CVE-2017-11335", "CVE-2016-10371", "CVE-2018-5784", "CVE-2017-7601", "CVE-2017-18013", "CVE-2017-7600", "CVE-2017-9936", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-12944", "CVE-2017-10688", "CVE-2017-13726", "CVE-2017-13727", "CVE-2017-9404", "CVE-2017-7598", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10269", "CVE-2016-10267"], "modified": "2018-05-02T00:00:00", "id": "CFOUNDRY:B5964D2AB72D599E586D491432260541", "href": "https://www.cloudfoundry.org/blog/usn-3602-1/", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2017-09-29T13:58:07", "references": ["https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-10267", "https://bugs.gentoo.org/show_bug.cgi?id=614020", "https://bugs.gentoo.org/show_bug.cgi?id=624602", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-9403", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7597", "https://bugs.gentoo.org/show_bug.cgi?id=610330", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7599", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7594", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7601", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7593", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7595", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-5563", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7596", "https://bugs.gentoo.org/show_bug.cgi?id=614022", "https://bugs.gentoo.org/show_bug.cgi?id=617996", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7602", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7600", "https://bugs.gentoo.org/show_bug.cgi?id=618610", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-5225", "https://bugs.gentoo.org/show_bug.cgi?id=617998", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7592", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-10268", "https://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7598"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.0.8", "arch": "all", "packageName": "media-libs/tiff", "packageFilename": "UNKNOWN", "operator": "lt"}], "description": "### Background\n\nThe TIFF library contains encoding and decoding routines for the Tag Image File Format. It is called by numerous programs, including GNOME and KDE applications, to interpret TIFF images. \n\n### Description\n\nMultiple vulnerabilities have been discovered in LibTIFF. Please review the referenced CVE identifiers for details. \n\n### Impact\n\nA remote attacker, by enticing the user to process a specially crafted TIFF file, could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, obtain sensitive information, or have other unspecified impacts. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll LibTIFF users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=media-libs/tiff-4.0.8\"\n \n\nPackages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying some of these packages.", "edition": 1, "reporter": "Gentoo Foundation", "published": "2017-09-26T00:00:00", "title": "libTIFF: Multiple vulnerabilities", "type": "gentoo", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-7597", "CVE-2016-10268", "CVE-2017-7601", "CVE-2017-7600", "CVE-2017-7594", "CVE-2017-7592", "CVE-2017-7593", "CVE-2017-7595", "CVE-2017-9403", "CVE-2017-7599", "CVE-2017-7598", "CVE-2017-5563", "CVE-2017-7596", "CVE-2017-7602", "CVE-2016-10267", "CVE-2017-5225"], "modified": "2017-09-26T00:00:00", "href": "https://security.gentoo.org/glsa/201709-27", "id": "GLSA-201709-27", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
