SUSE update for libtiff - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

SUSE update for libtiff

Secunia Advisory:	SA21319
Release Date:	2006-08-02

Critical:	Moderately critical
Impact:	DoS System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	SUSE Linux 10 SUSE Linux 10.1 SUSE Linux 9.2 SUSE Linux 9.3 SuSE Linux Desktop 1.x SuSE Linux Enterprise Server 8 SUSE Linux Enterprise Server 9 UnitedLinux 1.0


CVE reference:	CVE-2006-3459 (Secunia mirror) CVE-2006-3460 (Secunia mirror) CVE-2006-3461 (Secunia mirror) CVE-2006-3462 (Secunia mirror) CVE-2006-3463 (Secunia mirror) CVE-2006-3464 (Secunia mirror) CVE-2006-3465 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: SUSE has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system. For more information: SA21304 Solution: Apply updated packages. x86 Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/libtiff-3.8.2-5.9.i586.rpm cee78f3b8393e87212f6c7eee1f1352f ftp://ftp.suse.com/pub/suse/update/10...i586/libtiff-devel-3.8.2-5.9.i586.rpm 29374ea1d07be6b3c19828622fc8d85d SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/libtiff-3.7.3-2.6.i586.rpm c48675b2ee56aedbe4d14ae756343883 ftp://ftp.suse.com/pub/suse/i386/upda...i586/libtiff-devel-3.7.3-2.6.i586.rpm a19043509104bbdf56e208c44533fd17 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/libtiff-3.7.1-7.8.i586.rpm a9302f4fcd3b68edcbf6fa65ee8442c3 ftp://ftp.suse.com/pub/suse/i386/upda...i586/libtiff-devel-3.7.1-7.8.i586.rpm 12d72bbfb69a3fdb99007570d1e085ad SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/upda...rpm/i586/libtiff-3.6.1-47.12.i586.rpm 7f20ea84b8c0f57b61d885c45111d6b5 ftp://ftp.suse.com/pub/suse/i386/upda...86/libtiff-devel-3.6.1-47.12.i586.rpm f36060a6d1979685ee7ca48e7b752a13 Power PC Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/libtiff-3.8.2-5.9.ppc.rpm 854544b32d5b37295c74ccb50117696f ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/libtiff-devel-3.8.2-5.9.ppc.rpm 133cb5b0ca0d416e9680f887c97ad755 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/libtiff-3.7.3-2.6.ppc.rpm 99f01efad45f24e8d6d71d267cb8268c ftp://ftp.suse.com/pub/suse/i386/upda...m/ppc/libtiff-devel-3.7.3-2.6.ppc.rpm d7e48acc3fcb3c1ba3f4eb1f10ea1bee x86-64 Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/libtiff-3.8.2-5.9.x86_64.rpm 1925947454d5a294eea0ae33f84e7a18 ftp://ftp.suse.com/pub/suse/update/10...64/libtiff-32bit-3.8.2-5.9.x86_64.rpm d5815aa12ff3a020e9db8217a968d413 ftp://ftp.suse.com/pub/suse/update/10...64/libtiff-devel-3.8.2-5.9.x86_64.rpm aef78c4623c541daffd9d7264481028d ftp://ftp.suse.com/pub/suse/update/10...tiff-devel-32bit-3.8.2-5.9.x86_64.rpm 2310393005c3a73e8a07149febf55d0c SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/upda...m/x86_64/libtiff-3.7.3-2.6.x86_64.rpm 58b69feace7592ebe3d2cfb89145e23f ftp://ftp.suse.com/pub/suse/i386/upda...64/libtiff-32bit-3.7.3-2.6.x86_64.rpm 3eb152a3d6896290bb14ce2e282f7fa4 ftp://ftp.suse.com/pub/suse/i386/upda...64/libtiff-devel-3.7.3-2.6.x86_64.rpm 01395b47c733b9e8624b1c16fb7d3da0 ftp://ftp.suse.com/pub/suse/i386/upda...tiff-devel-32bit-3.7.3-2.6.x86_64.rpm 06071d61873c07b51feec446cd708bb8 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/upda...m/x86_64/libtiff-3.7.1-7.8.x86_64.rpm 1c210504374ad6344a8a6e4f4d248707 ftp://ftp.suse.com/pub/suse/i386/upda...6_64/libtiff-32bit-9.3-7.3.x86_64.rpm 86b90ea77293182e332ace686ae7d08e ftp://ftp.suse.com/pub/suse/i386/upda...64/libtiff-devel-3.7.1-7.8.x86_64.rpm 9f87e7aed1c3847bb74795e3f9180354 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/upda...x86_64/libtiff-3.6.1-47.12.x86_64.rpm 17a80e08f430667462d8c8dbda680671 ftp://ftp.suse.com/pub/suse/i386/upda...iff-32bit-9.2-200607271428.x86_64.rpm f11b621445853ca5e01a85dba0e86709 ftp://ftp.suse.com/pub/suse/i386/upda.../libtiff-devel-3.6.1-47.12.x86_64.rpm 63006aa37717b2e4151847e71e94b9ad Original Advisory: http://lists.suse.com/archive/suse-security-announce/2006-Aug/0001.html Other References: SA21304: http://secunia.com/advisories/21304/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

420 Related Secunia Security Advisories, displaying 10

1. SUSE update for Sun Java

2. SUSE update for IBMJava2-JRE and IBMJava2-SDK

3. SUSE update for python

4. SUSE update for postfix

5. SUSE update for net-snmp

6. SUSE Update for Multiple Packages

7. SUSE update for bind

8. SUSE Update for Multiple Packages

9. SUSE update for kernel

10. SUSE Update for Multiple Packages

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	dotProject SQL Injection and Cross-Site Scripting

2.	phpMyRealty "price_max" SQL Injection Vulnerability

3.	Novell eDirectory Multiple Vulnerabilities

4.	IBM WebSphere Application Server for z/OS HTTP Server mod_proxy_ftp Vulnerability

5.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

6.	Blogn Cross-Site Scripting and Cross-Site Request Forgery

7.	Sun Solaris Kernel Covert Channel Security Bypass

8.	Novell Forum TCL Command Injection Vulnerability

9.	Caudium "configvar" Insecure Temporary Files

10.	Adium MSN SLP Message Integer Overflow Vulnerabilities