Описание
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
A flaw was discovered in the bmp2tiff utility. By tricking a user into processing a specially crafted file, a remote attacker could exploit this flaw to cause a crash or memory corruption and, possibly, execute arbitrary code with the privileges of the user running the libtiff tool.
Отчет
Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw in libtiff.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libtiff | Will not fix | ||
| Red Hat Enterprise Linux 6 | libtiff | Fixed | RHSA-2016:1547 | 02.08.2016 |
| Red Hat Enterprise Linux 7 | libtiff | Fixed | RHSA-2016:1546 | 02.08.2016 |
Показывать по
Дополнительная информация
Статус:
EPSS
3.3 Low
CVSS3
4.3 Medium
CVSS2
Связанные уязвимости
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows ...
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
EPSS
3.3 Low
CVSS3
4.3 Medium
CVSS2