Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-5316

Опубликовано: 20 янв. 2017
Источник: nvd
CVSS3: 6.5
CVSS2: 4.3
EPSS Низкий

Описание

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*
Версия до 4.0.6 (включая)
Конфигурация 2

Одно из

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse_project:leap:42.1:*:*:*:*:*:*:*

EPSS

Процентиль: 75%
0.00858
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2016-5316

CVSS3: 6.5
ubuntu
около 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

redhat логотип

CVE-2016-5316

redhat
больше 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

debian логотип

CVE-2016-5316

CVSS3: 6.5
debian
около 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c i ...

github логотип

GHSA-mj4r-rg7f-xjm2

CVSS3: 6.5
github
больше 3 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

suse-cvrf логотип

openSUSE-SU-2016:2321-1

suse-cvrf
больше 9 лет назад

Security update for tiff

EPSS

Процентиль: 75%
0.00858
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125