Описание
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 4.0.7-1 |
| esm-infra-legacy/trusty | released | 4.0.3-7ubuntu0.6 |
| esm-infra/xenial | released | 4.0.6-1ubuntu0.1 |
| precise | ignored | end of life |
| precise/esm | not-affected | 3.9.5-2ubuntu1.10 |
| trusty | released | 4.0.3-7ubuntu0.6 |
| trusty/esm | released | 4.0.3-7ubuntu0.6 |
| upstream | released | 4.0.6-3 |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | ignored | end of life |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
Heap-based buffer overflow in the PackBitsPreEncode function in tif_pa ...
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3