Lucene search
PRIOn knowledge basePRION:CVE-2018-12900HistoryJun 26, 2018 - 10:29 p.m.
Heap overflow
2018-06-2622:29:00
PRIOn knowledge base
www.prio-n.com
8
Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 18.04 | |
| ubuntu_linux | eq | 18.10 | |
| libtiff | eq | 4.0.9 |
References
bugzilla.maptools.org/show_bug.cgi?id=2798
access.redhat.com/errata/RHSA-2019:2053
access.redhat.com/errata/RHSA-2019:3419
github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2018-12900
lists.debian.org/debian-lts-announce/2019/11/msg00027.html
usn.ubuntu.com/3906-1/
usn.ubuntu.com/3906-2/
www.debian.org/security/2020/dsa-4670
Related
osv
osv
CVE-2018-12900
2018-06-26 22:29:00
CVE-2019-7663
2019-02-09 16:29:00
tiff - security update
2019-11-26 00:00:00
nvd
nvd
CVE-2018-12900
2018-06-26 22:29:00
CVE-2019-7663
2019-02-09 16:29:00
cve
cve
CVE-2018-12900
2018-06-26 22:29:00
CVE-2019-7663
2019-02-09 16:29:00
oraclelinux
oraclelinux
libtiff security update
2019-11-14 00:00:00
libtiff security update
2019-08-13 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-06-27 07:34:07
nessus
nessus
RHEL 8 : libtiff (RHSA-2019:3419)
2019-11-06 00:00:00
Oracle Linux 8 : libtiff (ELSA-2019-3419)
2023-09-07 00:00:00
CentOS 8 : libtiff (CESA-2019:3419)
2021-01-29 00:00:00
debiancve
debiancve
CVE-2018-12900
2018-06-26 22:29:00
CVE-2019-7663
2019-02-09 16:29:00
alpinelinux
alpinelinux
CVE-2018-12900
2018-06-26 22:29:00
ubuntucve
ubuntucve
CVE-2018-12900
2018-06-26 00:00:00
CVE-2019-7663
2019-02-09 00:00:00
redhat
redhat
(RHSA-2019:3419) Moderate: libtiff security update
2019-11-05 17:43:50
(RHSA-2019:2053) Moderate: libtiff security update
2019-08-06 07:56:00
redhatcve
redhatcve
CVE-2018-12900
2020-01-11 09:33:27
CVE-2019-7663
2019-02-15 07:49:43
cvelist
cvelist
CVE-2018-12900
2018-06-26 22:00:00
CVE-2019-7663
2019-02-09 16:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0101)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3911-2)
2021-04-19 00:00:00
openSUSE: Security Advisory for tiff (openSUSE-SU-2018:3948-1)
2018-12-04 00:00:00
prion
prion
Code injection
2019-02-09 16:29:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 4.1.0-alt1
2019-11-14 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2019-02-22 03:35:50
Updated libtiff packages fix security vulnerabilities
2018-12-30 02:24:32
suse
suse
Security update for tiff (moderate)
2018-11-30 00:10:39
Security update for tiff (moderate)
2018-11-30 00:09:39
debian
debian
[SECURITY] [DLA 2009-1] tiff security update
2019-11-26 21:24:54
[SECURITY] [DSA 4670-1] tiff security update
2020-04-29 21:12:38
[SECURITY] [DSA 4670-1] tiff security update
2020-04-29 21:12:38
ubuntu
ubuntu
LibTIFF vulnerabilities
2019-03-12 00:00:00
LibTIFF vulnerabilities
2019-03-18 00:00:00
cloudfoundry
cloudfoundry
USN-3906-1: LibTIFF vulnerabilities | Cloud Foundry
2019-03-21 00:00:00
photon
photon
centos
centos
libtiff security update
2019-08-30 03:31:24
f5
f5
ibm
ibm
amazon
amazon
Medium: libtiff
2019-10-21 18:01:00
Medium: libtiff
2019-10-08 21:06:00