QwikSec

Security Database

CVE

CWE

Training

CVE-2016-10269

Published: Mar 24, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 512" and libtiff/tif_unix.c:340:2.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/

x_refsource_MISC

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_UBUNTU

https://github.com/vadz/libtiff/commit/1044b43637fa7f70fb19b93593777b78bd20da86

x_refsource_MISC

vdb-entry

x_refsource_BID

https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-10269

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.