Lucene search
Veracode Vulnerability DatabaseVERACODE:7142HistoryJul 24, 2018 - 8:00 a.m.
Denial Of Service (DoS)
2018-07-2408:00:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.003 Low
EPSS
Percentile
70.0%
libtiff.so is vulnerable to denial of service (DoS) attacks. The vulnerability exists due to a heap-based buffer overflow that occurs in the PackBitsDecode function of tif_packbits.c, causing a DoS attack when parsing an invalid bmp file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libtiff.so | le | 5.6.0 | |
| libtiff | le | 4.0.6.2 |
Related
cvelist
cvelist
CVE-2016-5319
2017-01-20 15:00:00
osv
osv
CVE-2016-5319
2017-01-20 15:59:00
tiff - security update
2016-11-02 00:00:00
debiancve
debiancve
CVE-2016-5319
2017-01-20 15:59:00
cve
cve
CVE-2016-5319
2017-01-20 15:59:00
prion
prion
Heap overflow
2017-01-20 15:59:00
ubuntucve
ubuntucve
CVE-2016-5319
2017-01-20 00:00:00
CVE-2017-17942
2017-12-28 00:00:00
nvd
nvd
CVE-2016-5319
2017-01-20 15:59:00
nessus
nessus
openSUSE Security Update : tiff (openSUSE-2018-1056)
2018-09-27 00:00:00
SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2018:2836-1)
2018-09-25 00:00:00
SUSE SLES11 Security Update : tiff (SUSE-SU-2018:2676-1)
2018-09-12 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0409)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2836-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for tiff (openSUSE-SU-2018:2880-1)
2018-09-27 00:00:00
suse
suse
Security update for tiff (moderate)
2018-09-26 18:21:46
mageia
mageia
Updated libtiff packages fix security vulnerabilities
2018-10-20 16:55:49
ibm
ibm
debian
debian
[SECURITY] [DLA 693-1] tiff security update
2016-11-02 12:53:25
rosalinux
rosalinux
Advisory ROSA-SA-2021-1896
2021-07-02 17:18:37
archlinux
archlinux
[ASA-201611-26] libtiff: multiple issues
2016-11-25 00:00:00
[ASA-201611-27] lib32-libtiff: multiple issues
2016-11-25 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2017-01-09 00:00:00