Back to search
CVE-2018-17101
Published: Sep 16, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-3864-1
vendor-advisory
x_refsource_UBUNTU
105370
vdb-entry
x_refsource_BID
DSA-4349
vendor-advisory
x_refsource_DEBIAN
http://bugzilla.maptools.org/show_bug.cgi?id=2807
x_refsource_MISC
[debian-lts-announce] 20181028 [SECURITY] [DLA 1557-1] tiff security update
mailing-list
x_refsource_MLIST
USN-3906-2
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:2053
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now