EPSS
Percentile
57.4%
libtiff.so is vulnerable to heap-based buffer over-reads. The vulnerability exists due to a flaw in the TIFFWriteScanline() function of tif_write.c.
TIFFWriteScanline()
tif_write.c
bugzilla.maptools.org/show_bug.cgi?id=2788
www.securityfocus.com/bid/104089
access.redhat.com/errata/RHSA-2019:2053
github.com/vadz/libtiff/blob/master/libtiff/tif_write.c#L133
usn.ubuntu.com/3906-1/
usn.ubuntu.com/3906-2/