Описание
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libtiff | Will not fix | ||
| Red Hat Enterprise Linux 7 | compat-libtiff3 | Will not fix | ||
| Red Hat Enterprise Linux 6 | libtiff | Fixed | RHSA-2017:0225 | 01.02.2017 |
| Red Hat Enterprise Linux 7 | libtiff | Fixed | RHSA-2017:0225 | 01.02.2017 |
Показывать по
Дополнительная информация
Статус:
EPSS
8.1 High
CVSS3
5.1 Medium
CVSS2
Связанные уязвимости
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
An exploitable heap-based buffer overflow exists in the handling of TI ...
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
EPSS
8.1 High
CVSS3
5.1 Medium
CVSS2