Lucene search
Veracode Vulnerability DatabaseVERACODE:6329HistoryMay 21, 2018 - 6:18 a.m.
Denial Of Service (DoS)
2018-05-2106:18:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.009 Low
EPSS
Percentile
82.5%
libtiff.so is vulnerable to denial of service (DoS) attacks. The vulnerability exists due to a memory leak in OJPEGReadHeaderInfoSecTablesAcTable of libtiff/tif_ojpeg.c that would cause a DoS attack when the leaked memory is accessed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libtiff.so | le | 5.7.0 | |
| libtiff | le | 4.0.6.2 |
References
bugzilla.maptools.org/show_bug.cgi?id=2659
www.debian.org/security/2017/dsa-3844
www.securityfocus.com/bid/97503
bugzilla.suse.com/show_bug.cgi?id=1033128
github.com/vadz/libtiff/compare/6c602156e510656aca4f292f47c057c79cead77f...2ea32f7372b65c24b2816f11c04bf59b5090d05b
security.gentoo.org/glsa/201709-27
usn.ubuntu.com/3602-1/
Related
osv
osv
CVE-2017-7594
2017-04-09 14:59:00
tiff3 - security update
2017-04-24 00:00:00
tiff - security update
2017-04-24 00:00:00
prion
prion
Memory corruption
2017-04-09 14:59:00
redhatcve
redhatcve
CVE-2017-7594
2017-04-11 13:49:16
ubuntucve
ubuntucve
CVE-2017-7594
2017-04-09 00:00:00
alpinelinux
alpinelinux
CVE-2017-7594
2017-04-09 14:59:00
cvelist
cvelist
CVE-2017-7594
2017-04-09 14:00:00
nvd
nvd
CVE-2017-7594
2017-04-09 14:59:00
cve
cve
CVE-2017-7594
2017-04-09 14:59:00
debiancve
debiancve
CVE-2017-7594
2017-04-09 14:59:00
nessus
nessus
Debian DLA-912-1 : tiff3 security update
2017-04-25 00:00:00
Fedora 26 : libtiff (2017-d95dacdfbf)
2017-07-17 00:00:00
Debian DLA-911-1 : tiff security update
2017-04-25 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-912-1)
2018-01-16 00:00:00
Fedora Update for libtiff FEDORA-2017-021bebae25
2017-04-15 00:00:00
Debian: Security Advisory (DLA-911-1)
2018-01-16 00:00:00
debian
debian
[SECURITY] [DLA 912-1] tiff3 security update
2017-04-24 19:53:46
[SECURITY] [DLA 911-1] tiff security update
2017-04-24 09:30:12
[SECURITY] [DSA 3844-1] tiff security update
2017-05-03 21:06:19
fedora
fedora
[SECURITY] Fedora 26 Update: libtiff-4.0.7-5.fc26
2017-04-14 17:24:35
[SECURITY] Fedora 25 Update: libtiff-4.0.7-5.fc25
2017-04-14 22:50:57
archlinux
archlinux
[ASA-201704-10] libtiff: multiple issues
2017-04-28 00:00:00
freebsd
freebsd
tiff -- multiple vulnerabilities
2017-04-01 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2017-09-26 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2017-07-01 10:04:05
cloudfoundry
cloudfoundry
USN-3602-1: LibTIFF vulnerabilities | Cloud Foundry
2018-05-02 00:00:00
ubuntu
ubuntu
LibTIFF vulnerabilities
2018-03-20 00:00:00