Automated analysis has detected that the following third party packages have had vulnerabilities publicly reported. 

NOTE: There may be several bugs listed below - in almost all cases, all bugs can be quickly addressed by upgrading to the latest version of the package.

Package Name: media-libs/tiff
Package Version: [cpe:/a:libtiff:libtiff:4.0.6 cpe:/a:libtiff:libtiff:4.0.7 cpe:/a:libtiff:libtiff:4.0.8 cpe:/a:libtiff_project:libtiff:4.0.6 cpe:/a:libtiff_project:libtiff:4.0.7 cpe:/a:libtiff_project:libtiff:4.0.8]

Advisory: CVE-2017-9403
  Details: https://vomit.googleplex.com/advisory?id=CVE/CVE-2017-9403
  CVSS severity score: 4.3/10.0
  Confidence: high
  Description:

In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.
Advisory: CVE-2017-9404
  Details: https://vomit.googleplex.com/advisory?id=CVE/CVE-2017-9404
  CVSS severity score: 4.3/10.0
  Confidence: high
  Description:

In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.