CVE-2016-9534 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-9534 Interim 1 17 2024-04-01T00:55:31Z current 2021-05-30T13:47:52Z 2024-04-01T00:55:31Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-9534 tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didn't reset the tif_rawcc and tif_rawcp members. Reported as MSVR 35095, aka "TIFFFlushData1 heap-buffer-overflow." The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 7 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 libtiff-4.0.3-27.el7_3 libtiff-devel libtiff-devel-32bit libtiff-devel-4.0.3-27.el7_3 libtiff-static-4.0.3-27.el7_3 libtiff-tools-4.0.3-27.el7_3 libtiff3 libtiff3-32bit libtiff5 libtiff5-32bit tiff libtiff-4.0.3-27.el7_3 as a component of SUSE Liberty Linux 7 libtiff-devel-4.0.3-27.el7_3 as a component of SUSE Liberty Linux 7 libtiff-static-4.0.3-27.el7_3 as a component of SUSE Liberty Linux 7 libtiff-tools-4.0.3-27.el7_3 as a component of SUSE Liberty Linux 7 libtiff5 as a component of SUSE Linux Enterprise Desktop 12 SP1 libtiff5-32bit as a component of SUSE Linux Enterprise Desktop 12 SP1 tiff as a component of SUSE Linux Enterprise Desktop 12 SP1 tiff as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata tiff as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata libtiff3 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libtiff3-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS tiff as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libtiff5 as a component of SUSE Linux Enterprise Server 12 SP1 libtiff5-32bit as a component of SUSE Linux Enterprise Server 12 SP1 tiff as a component of SUSE Linux Enterprise Server 12 SP1 libtiff5 as a component of SUSE Linux Enterprise Server 12 SP2 libtiff5-32bit as a component of SUSE Linux Enterprise Server 12 SP2 tiff as a component of SUSE Linux Enterprise Server 12 SP2 libtiff-devel as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libtiff-devel-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 tiff as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libtiff-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 tiff as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libtiff-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 tiff as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didn't reset the tif_rawcc and tif_rawcp members. Reported as MSVR 35095, aka "TIFFFlushData1 heap-buffer-overflow." CVE-2016-9534 SUSE Liberty Linux 7:libtiff-4.0.3-27.el7_3 SUSE Liberty Linux 7:libtiff-devel-4.0.3-27.el7_3 SUSE Liberty Linux 7:libtiff-static-4.0.3-27.el7_3 SUSE Liberty Linux 7:libtiff-tools-4.0.3-27.el7_3 SUSE Linux Enterprise Desktop 12 SP1:libtiff5 SUSE Linux Enterprise Desktop 12 SP1:libtiff5-32bit SUSE Linux Enterprise Desktop 12 SP1:tiff SUSE Linux Enterprise Server 11 SP1 for Teradata:tiff SUSE Linux Enterprise Server 11 SP3 for Teradata:tiff SUSE Linux Enterprise Server 11 SP4-LTSS:libtiff3 SUSE Linux Enterprise Server 11 SP4-LTSS:libtiff3-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:tiff SUSE Linux Enterprise Server 12 SP1:libtiff5 SUSE Linux Enterprise Server 12 SP1:libtiff5-32bit SUSE Linux Enterprise Server 12 SP1:tiff SUSE Linux Enterprise Server 12 SP2:libtiff5 SUSE Linux Enterprise Server 12 SP2:libtiff5-32bit SUSE Linux Enterprise Server 12 SP2:tiff SUSE Linux Enterprise Software Development Kit 11 SP4:libtiff-devel SUSE Linux Enterprise Software Development Kit 11 SP4:libtiff-devel-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:tiff SUSE Linux Enterprise Software Development Kit 12 SP1:libtiff-devel SUSE Linux Enterprise Software Development Kit 12 SP1:tiff SUSE Linux Enterprise Software Development Kit 12 SP2:libtiff-devel SUSE Linux Enterprise Software Development Kit 12 SP2:tiff moderate 4.3 AV:A/AC:H/Au:N/C:P/I:P/A:P 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H