Описание
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 4.0.9-5ubuntu0.3 |
| devel | not-affected | 4.0.10+git191003-1 |
| disco | released | 4.0.10-4ubuntu0.1 |
| eoan | not-affected | 4.0.10+git191003-1 |
| esm-infra-legacy/trusty | not-affected | 4.0.3-7ubuntu0.11+esm6 |
| esm-infra/bionic | not-affected | 4.0.9-5ubuntu0.3 |
| esm-infra/focal | not-affected | 4.0.10+git191003-1 |
| esm-infra/xenial | not-affected | 4.0.6-1ubuntu0.7 |
| focal | not-affected | 4.0.10+git191003-1 |
| groovy | not-affected | 4.0.10+git191003-1 |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through ...
4.3 Medium
CVSS2
6.5 Medium
CVSS3