CVE-2018-5360

Опубликовано: 14 янв. 2018

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

CVSS3: 8.8

Описание

LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	4.0.7-1
cosmic	not-affected	4.0.7-1
devel	not-affected	4.0.7-1
esm-infra-legacy/trusty	released	4.0.3-7ubuntu0.6
esm-infra/bionic	not-affected	4.0.7-1
esm-infra/xenial	released	4.0.6-1ubuntu0.1
precise/esm	ignored
trusty	released	4.0.3-7ubuntu0.6
trusty/esm	released	4.0.3-7ubuntu0.6

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2018-5360

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2018-5360

CVSS3: 3.3

redhat

около 8 лет назад

LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27.

CVE-2018-5360

CVSS3: 8.8

nvd

около 8 лет назад

LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27.

CVE-2018-5360

CVSS3: 8.8

debian

около 8 лет назад

LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstr ...

GHSA-5949-jg6x-h5jp

CVSS3: 8.8

github

больше 3 лет назад

LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27.

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2018-5360

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости