CVE-2016-9540

Опубликовано: 08 окт. 2016

Источник: redhat

CVSS3: 7

CVSS2: 5.1

EPSS Низкий

Описание

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	libtiff	Will not fix
Red Hat Enterprise Linux 7	compat-libtiff3	Will not fix
Red Hat Enterprise Linux 6	libtiff	Fixed	RHSA-2017:0225	01.02.2017
Red Hat Enterprise Linux 7	libtiff	Fixed	RHSA-2017:0225	01.02.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-122

https://bugzilla.redhat.com/show_bug.cgi?id=1397768libtiff: cpStripToTile heap-buffer-overflow

EPSS

Процентиль: 61%

0.00416

Низкий

7 High

CVSS3

5.1 Medium

CVSS2

Связанные уязвимости

CVE-2016-9540

CVSS3: 9.8

ubuntu

почти 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

CVE-2016-9540

CVSS3: 9.8

nvd

почти 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

CVE-2016-9540

CVSS3: 9.8

debian

почти 9 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled im ...

GHSA-5m38-69cg-mcjw

CVSS3: 9.8

github

больше 3 лет назад

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka "cpStripToTile heap-buffer-overflow."

ELSA-2017-0225

oracle-oval

почти 9 лет назад

ELSA-2017-0225: libtiff security update (MODERATE)

EPSS

Процентиль: 61%

0.00416

Низкий

7 High

CVSS3

5.1 Medium

CVSS2