CVE-2015-1547

Опубликовано: 13 апр. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.

Релиз	Статус	Примечание
devel	not-affected	4.0.6-1
esm-infra-legacy/trusty	released	4.0.3-7ubuntu0.2
lucid	released	3.9.2-2ubuntu0.15
precise	released	3.9.5-2ubuntu1.7
trusty	released	4.0.3-7ubuntu0.2
trusty/esm	released	4.0.3-7ubuntu0.2
upstream	needs-triage
utopic	released	4.0.3-10ubuntu0.1
vivid	released	4.0.3-12.3ubuntu1
vivid/stable-phone-overlay	released	4.0.3-12.3ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 89%

0.0445

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2015-1547

CVSS3: 4.4

redhat

почти 11 лет назад

The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.

CVE-2015-1547

CVSS3: 6.5

nvd

больше 9 лет назад

The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.

CVE-2015-1547

CVSS3: 6.5

debian

больше 9 лет назад

The NeXTDecode function in tif_next.c in LibTIFF allows remote attacke ...

GHSA-63xc-994f-r5qr

CVSS3: 6.5

github

больше 3 лет назад

The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.

ELSA-2016-1547

oracle-oval

больше 9 лет назад

ELSA-2016-1547: libtiff security update (IMPORTANT)

EPSS

Процентиль: 89%

0.0445

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2015-1547

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости