Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-3419

Опубликовано: 14 нояб. 2019
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2019-3419: libtiff security update (MODERATE)

[4.0.9-15]

  • Fix DIVIDE_BY_ZERO in patch for CVE-2018-12900 (#1595579)

[4.0.9-14]

  • Fix CVE-2018-12900 (#1595579)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

libtiff

4.0.9-15.el8

libtiff-devel

4.0.9-15.el8

libtiff-tools

4.0.9-15.el8

Oracle Linux x86_64

libtiff

4.0.9-15.el8

libtiff-devel

4.0.9-15.el8

libtiff-tools

4.0.9-15.el8

Связанные CVE

CVE-2018-12900

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2018-12900

CVSS3: 8.8
ubuntu
больше 7 лет назад

Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.

redhat логотип

CVE-2018-12900

CVSS3: 5.3
redhat
больше 7 лет назад

Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.

nvd логотип

CVE-2018-12900

CVSS3: 8.8
nvd
больше 7 лет назад

Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.

debian логотип

CVE-2018-12900

CVSS3: 8.8
debian
больше 7 лет назад

Heap-based buffer overflow in the cpSeparateBufToContigBuf function in ...

github логотип

GHSA-v933-8xv5-c5mm

CVSS3: 8.8
github
больше 3 лет назад

Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.