CVE-2016-10267

Опубликовано: 24 мар. 2017

Источник: debian

EPSS Низкий

Описание

LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.0.7-2		package
tiff3	removed			package
tiff3	not-affected		wheezy	package

Примечания

https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero/
https://github.com/vadz/libtiff/commit/43bc256d8ae44b92d2734a3c5bc73957a4d7c1ec
http://bugzilla.maptools.org/show_bug.cgi?id=2611

EPSS

Процентиль: 61%

0.00413

Низкий

Связанные уязвимости

CVE-2016-10267

CVSS3: 5.5

ubuntu

почти 9 лет назад

LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.

CVE-2016-10267

CVSS3: 3.3

redhat

около 9 лет назад

LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.

CVE-2016-10267

CVSS3: 5.5

nvd

почти 9 лет назад

LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.

GHSA-x7j7-3pw5-7mx4

CVSS3: 5.5

github

больше 3 лет назад

LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.

openSUSE-SU-2017:1108-1

suse-cvrf

почти 9 лет назад

Security update for tiff

EPSS

Процентиль: 61%

0.00413

Низкий