Advisories » MGASA-2017-0210

Updated libtiff packages fix security vulnerabilities

Publication date: 22 Jul 2017
Modification date: 21 Jul 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-9936 , CVE-2017-10688

Description

Multiple vulnerabilities have been discovered in the libtiff library
and the included tools, which may result in denial of service or the
execution of arbitrary code (CVE-2017-9936, CVE-2017-10688).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=21195
• https://www.debian.org/security/2017/dsa-3903
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688

SRPMS

5/core

• libtiff-4.0.8-1.1.mga5