CVE-2016-3622

Опубликовано: 03 окт. 2016

Источник: debian

Описание

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.0.7-1		package
tiff3	not-affected			package

Примечания

https://www.openwall.com/lists/oss-security/2016/04/07/4
Fixed by: https://github.com/vadz/libtiff/commit/92d966a5fcfbdca67957c8c5c47b467aa650b286

Связанные уязвимости

CVE-2016-3622

CVSS3: 6.5

ubuntu

больше 9 лет назад

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

CVE-2016-3622

redhat

почти 10 лет назад

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

CVE-2016-3622

CVSS3: 6.5

nvd

больше 9 лет назад

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

GHSA-x5xg-3gfm-7r9v

CVSS3: 6.5

github

больше 3 лет назад

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

openSUSE-SU-2016:2525-1

suse-cvrf

больше 9 лет назад

Security update for tiff