Описание
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 4.0.7-1 |
| devel | not-affected | 4.0.7-1 |
| esm-infra-legacy/trusty | ignored | |
| esm-infra/xenial | ignored | |
| precise | ignored | end of life |
| precise/esm | ignored | |
| trusty | ignored | |
| trusty/esm | ignored | |
| upstream | released | 4.0.6-3 |
| vivid/stable-phone-overlay | ignored | end of life |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4. ...
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3