exploitDog

CVE-2016-10371

Опубликовано: 10 мая 2017

Источник: debian

Описание

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.0.7-7		package
tiff	fixed	4.0.3-12.3+deb8u5	jessie	package
tiff3	removed			package
tiff3	no-dsa		wheezy	package

Примечания

http://bugzilla.maptools.org/show_bug.cgi?id=2535
http://bugzilla.maptools.org/show_bug.cgi?id=2612
Fixed by: https://github.com/vadz/libtiff/commit/0abd094b6e5079c4d8be733829240491cb230f3d

Связанные уязвимости

CVE-2016-10371

CVSS3: 5.5

ubuntu

больше 8 лет назад

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.

CVE-2016-10371

CVSS3: 3.3

redhat

около 10 лет назад

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.

CVE-2016-10371

CVSS3: 5.5

nvd

больше 8 лет назад

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.

GHSA-vpfx-5xjm-5r77

CVSS3: 5.5

github

больше 3 лет назад

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.

openSUSE-SU-2017:2635-1

suse-cvrf

больше 8 лет назад

Security update for tiff