Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-5316

Опубликовано: 15 июн. 2016
Источник: redhat
CVSS2: 4.3

Описание

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5libtiffWill not fix
Red Hat Enterprise Linux 6libtiffNot affected
Red Hat Enterprise Linux 7compat-libtiff3Not affected
Red Hat Enterprise Linux 7libtiffNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1346690libtiff: Out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-5316

CVSS3: 6.5
ubuntu
около 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

nvd логотип

CVE-2016-5316

CVSS3: 6.5
nvd
около 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

debian логотип

CVE-2016-5316

CVSS3: 6.5
debian
около 9 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c i ...

github логотип

GHSA-mj4r-rg7f-xjm2

CVSS3: 6.5
github
больше 3 лет назад

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

suse-cvrf логотип

openSUSE-SU-2016:2321-1

suse-cvrf
больше 9 лет назад

Security update for tiff

4.3 Medium

CVSS2