CVE-2016-9540

Опубликовано: 22 нояб. 2016

Источник: debian

Описание

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.0.7-1		package
tiff3	not-affected			package

Примечания

https://github.com/vadz/libtiff/commit/5ad9d8016fbb60109302d558f7edb2cb2a3bb8e3

Связанные уязвимости

CVE-2016-9540

CVSS3: 9.8

ubuntu

почти 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

CVE-2016-9540

CVSS3: 7

redhat

около 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

CVE-2016-9540

CVSS3: 9.8

nvd

почти 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

GHSA-5m38-69cg-mcjw

CVSS3: 9.8

github

больше 3 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

ELSA-2017-0225

oracle-oval

почти 9 лет назад

ELSA-2017-0225: libtiff security update (MODERATE)