Описание
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| tiff | fixed | 4.0.6-2 | package | |
| tiff3 | removed | package |
Примечания
Upstream fix http://bugzilla.maptools.org/show_bug.cgi?id=2559#c3
http://bugzilla.maptools.org/show_bug.cgi?id=2559
Reproducer http://bugzilla.maptools.org/attachment.cgi?id=659
No security impact, just a crash in a CLI tool
EPSS
Связанные уязвимости
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
Уязвимость библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в обслуживании
EPSS