CVE-2017-17973

Опубликовано: 29 дек. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. NOTE: there is a third-party report of inability to reproduce this issue

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored
cosmic	ignored	end of life
devel	ignored
disco	ignored
esm-infra-legacy/trusty	ignored
esm-infra/bionic	ignored
esm-infra/xenial	ignored
precise/esm	ignored
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2017-17973

EPSS

Процентиль: 65%

0.00486

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2017-17973

CVSS3: 7.5

redhat

около 8 лет назад

In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. NOTE: there is a third-party report of inability to reproduce this issue

CVE-2017-17973

CVSS3: 8.8

nvd

около 8 лет назад

In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. NOTE: there is a third-party report of inability to reproduce this issue

CVE-2017-17973

CVSS3: 8.8

debian

около 8 лет назад

In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writ ...

GHSA-pf49-rpj2-8mg3

CVSS3: 8.8

github

больше 3 лет назад

** DISPUTED ** In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. NOTE: there is a third-party report of inability to reproduce this issue.

openSUSE-SU-2018:1204-1

suse-cvrf

больше 7 лет назад

Security update for tiff

EPSS

Процентиль: 65%

0.00486

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2017-17973

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости