QwikSec

Security Database

CVE

CWE

Training

CVE-2017-5849

Published: Mar 15, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted tiff image file, related to transposing width and height values.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://bugzilla.maptools.org/show_bug.cgi?id=2655

x_refsource_MISC

[oss-security] 20170202 Re: CVE request: Out-of-Bound read and write issues in put1bitbwtile()(tiff-4.0.7/libtiff/tif-getimage.c:1352) and putgreytile()(tiff-4.0.7/libtiff/tif-getimage.c:1288)

mailing-list

x_refsource_MLIST

http://bugzilla.maptools.org/show_bug.cgi?id=2654

x_refsource_MISC

FEDORA-2017-fa4e441e03

vendor-advisory

x_refsource_FEDORA

FEDORA-2017-1855c8af2c

vendor-advisory

x_refsource_FEDORA

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.