Security update for exempi SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0732-1 Final 1 1 2018-03-18T10:36:57Z current 2018-03-18T10:36:57Z 2018-03-18T10:36:57Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for exempi This update for exempi fixes the following issues: - CVE-2018-7728: Specially crafted TIFF images could have been used to cause a denial of service via a heap-based buffer overflow (boo#1085297) - CVE-2018-7730: Specially crafted Excel files could have been used cause a denial of service via a heap-based buffer overflow (boo#1085295) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-03/msg00064.html E-Mail link for openSUSE-SU-2018:0732-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 exempi-2.2.2-6.3.1 exempi-tools-2.2.2-6.3.1 libexempi-devel-2.2.2-6.3.1 libexempi3-2.2.2-6.3.1 libexempi3-32bit-2.2.2-6.3.1 exempi-2.2.2-6.3.1 as a component of openSUSE Leap 42.3 exempi-tools-2.2.2-6.3.1 as a component of openSUSE Leap 42.3 libexempi-devel-2.2.2-6.3.1 as a component of openSUSE Leap 42.3 libexempi3-2.2.2-6.3.1 as a component of openSUSE Leap 42.3 libexempi3-32bit-2.2.2-6.3.1 as a component of openSUSE Leap 42.3 An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp. CVE-2018-7728 openSUSE Leap 42.3:exempi-2.2.2-6.3.1 openSUSE Leap 42.3:exempi-tools-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi-devel-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi3-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi3-32bit-2.2.2-6.3.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00064.html https://www.suse.com/security/cve/CVE-2018-7728.html CVE-2018-7728 https://bugzilla.suse.com/1085297 SUSE Bug 1085297 https://bugzilla.suse.com/1085585 SUSE Bug 1085585 An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function. CVE-2018-7730 openSUSE Leap 42.3:exempi-2.2.2-6.3.1 openSUSE Leap 42.3:exempi-tools-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi-devel-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi3-2.2.2-6.3.1 openSUSE Leap 42.3:libexempi3-32bit-2.2.2-6.3.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00064.html https://www.suse.com/security/cve/CVE-2018-7730.html CVE-2018-7730 https://bugzilla.suse.com/1085295 SUSE Bug 1085295 https://bugzilla.suse.com/1085585 SUSE Bug 1085585 https://bugzilla.suse.com/1103718 SUSE Bug 1103718