Back to search
CVE-2014-8129
Published: Mar 12, 2018
Modified: Aug 6, 2024
PUBLISHED
Description
LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://support.apple.com/kb/HT204941
x_refsource_CONFIRM
RHSA-2016:1547
vendor-advisory
x_refsource_REDHAT
http://bugzilla.maptools.org/show_bug.cgi?id=2488
x_refsource_MISC
APPLE-SA-2015-06-30-2
vendor-advisory
x_refsource_APPLE
[oss-security] 20150124 Multiple vulnerabilities in LibTIFF and associated tools
mailing-list
x_refsource_MLIST
72352
vdb-entry
x_refsource_BID
GLSA-201701-16
vendor-advisory
x_refsource_GENTOO
https://bugzilla.redhat.com/show_bug.cgi?id=1185815
x_refsource_CONFIRM
1032760
vdb-entry
x_refsource_SECTRACK
http://bugzilla.maptools.org/show_bug.cgi?id=2487
x_refsource_MISC
http://support.apple.com/kb/HT204942
x_refsource_CONFIRM
APPLE-SA-2015-06-30-1
vendor-advisory
x_refsource_APPLE
RHSA-2016:1546
vendor-advisory
x_refsource_REDHAT
DSA-3273
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now