Описание
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | uses system tiff |
| devel | not-affected | uses system tiff |
| esm-apps/bionic | not-affected | uses system tiff |
| esm-apps/focal | not-affected | uses system tiff |
| esm-apps/jammy | not-affected | uses system tiff |
| esm-apps/xenial | ignored | documentation only |
| esm-infra-legacy/trusty | ignored | documentation only |
| focal | not-affected | uses system tiff |
| jammy | not-affected | uses system tiff |
| mantic | not-affected | uses system tiff |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | dropped embedded libtiff |
| esm-apps/bionic | ignored | documentation only |
| esm-apps/focal | ignored | documentation only |
| esm-apps/jammy | ignored | documentation only |
| focal | ignored | end of standard support, was ignored [documentation only] |
| jammy | ignored | documentation only |
| mantic | not-affected | dropped embedded libtiff |
| trusty | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | ignored | documentation only |
| esm-apps/bionic | ignored | documentation only |
| esm-apps/focal | ignored | documentation only |
| esm-apps/jammy | ignored | documentation only |
| focal | ignored | end of standard support, was ignored [documentation only] |
| jammy | ignored | documentation only |
| mantic | ignored | end of life, was ignored [documentation only] |
| trusty | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | ignored | documentation only |
| esm-apps/bionic | ignored | documentation only |
| esm-apps/focal | ignored | documentation only |
| esm-apps/jammy | ignored | documentation only |
| esm-apps/xenial | not-affected | code not present |
| focal | ignored | end of standard support, was ignored [documentation only] |
| jammy | ignored | documentation only |
| mantic | ignored | end of life, was ignored [documentation only] |
| trusty | not-affected | code not present |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | ignored | documentation only |
| esm-infra-legacy/trusty | ignored | documentation only |
| esm-infra/bionic | ignored | documentation only |
| esm-infra/focal | ignored | documentation only |
| esm-infra/xenial | ignored | documentation only |
| focal | ignored | end of standard support, was ignored [documentation only] |
| jammy | ignored | documentation only |
| mantic | ignored | end of life, was ignored [documentation only] |
| trusty | ignored | end of standard support |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.
An out-of-memory flaw was found in libtiff that could be triggered by ...
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.
Уязвимость функции tiffrasterscanlinesize64() библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS3