Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-17101

Опубликовано: 16 сент. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

РелизСтатусПримечание
bionic

released

4.0.9-5ubuntu0.1
cosmic

released

4.0.9-6ubuntu0.1
devel

not-affected

4.0.10-3
esm-infra-legacy/trusty

released

4.0.3-7ubuntu0.10
esm-infra/bionic

released

4.0.9-5ubuntu0.1
esm-infra/xenial

released

4.0.6-1ubuntu0.5
precise/esm

not-affected

3.9.5-2ubuntu1.12
trusty

released

4.0.3-7ubuntu0.10
trusty/esm

released

4.0.3-7ubuntu0.10
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 66%
0.00525
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-17101

CVSS3: 4.7
redhat
больше 7 лет назад

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

nvd логотип

CVE-2018-17101

CVSS3: 8.8
nvd
больше 7 лет назад

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

debian логотип

CVE-2018-17101

CVSS3: 8.8
debian
больше 7 лет назад

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds ...

github логотип

GHSA-g4cc-75rh-qvmv

CVSS3: 8.8
github
больше 3 лет назад

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

fstec логотип

BDU:2020-00729

CVSS3: 8.8
fstec
больше 7 лет назад

Уязвимость библиотеки LibTIFF, связанная с записью за границами буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

EPSS

Процентиль: 66%
0.00525
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3