Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-17942

Опубликовано: 28 дек. 2017
Источник: debian

Описание

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tifffixed4.0.6-3package
tifffixed4.0.3-12.3+deb8u2jessiepackage
tiff3removedpackage

Примечания

  • http://bugzilla.maptools.org/show_bug.cgi?id=2767

  • https://gitlab.com/libtiff/libtiff/issues/120

  • No patch available. Marked as wontfix by upstream.

  • bmp2tiff was removed in 4.0.6-3 and DSA 3762, marking as fixed

  • although technically still present in the source package.

Связанные уязвимости

ubuntu логотип

CVE-2017-17942

CVSS3: 8.8
ubuntu
около 8 лет назад

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

redhat логотип

CVE-2017-17942

CVSS3: 4.4
redhat
около 8 лет назад

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

nvd логотип

CVE-2017-17942

CVSS3: 8.8
nvd
около 8 лет назад

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

github логотип

GHSA-pcrj-6r6v-pxpg

CVSS3: 8.8
github
больше 3 лет назад

In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

suse-cvrf логотип

openSUSE-SU-2018:2880-1

suse-cvrf
больше 7 лет назад

Security update for tiff