Описание
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | released | 4.3.0-7 |
| esm-infra-legacy/trusty | not-affected | code not present |
| esm-infra/bionic | not-affected | code not present |
| esm-infra/focal | not-affected | 4.1.0+git191117-2ubuntu0.20.04.5 |
| esm-infra/xenial | not-affected | code not present |
| focal | released | 4.1.0+git191117-2ubuntu0.20.04.5 |
| impish | ignored | end of life |
| jammy | released | 4.3.0-6ubuntu0.1 |
| trusty/esm | not-affected | code not present |
Показывать по
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFR ...
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
Уязвимость функции TIFFReadRawDataStriped() компонента tiffinfo.c библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5.5 Medium
CVSS3