CVE-2020-35521

Опубликовано: 09 мар. 2021

Источник: debian

EPSS Низкий

Описание

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.1.0+git201212-1		package

Примечания

https://gitlab.com/libtiff/libtiff/-/commit/b5a935d96b21cda0f434230cdf8ca958cd8b4eef
https://gitlab.com/libtiff/libtiff/-/merge_requests/165
Crash in CLI tool, no security impact

EPSS

Процентиль: 23%

0.00075

Низкий

Связанные уязвимости

CVE-2020-35521

CVSS3: 5.5

ubuntu

почти 5 лет назад

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service.

CVE-2020-35521

CVSS3: 5.5

redhat

около 5 лет назад

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service.

CVE-2020-35521

CVSS3: 5.5

nvd

почти 5 лет назад

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service.

CVE-2020-35521

CVSS3: 5.5

msrc

почти 5 лет назад

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c a crafted TIFF file can lead to an abort resulting in denial of service.

GHSA-9g68-wfgw-rc4f

CVSS3: 5.5

github

больше 3 лет назад

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service.

EPSS

Процентиль: 23%

0.00075

Низкий