libtiff.so is susceptible to denial of service (DoS). The vulnerability is possible because the ChopUpSingleUncompressedStrip()
function allocates memory without considering the size of the file, leading to the attack if a malicious TIFF file is input. This CVE is different from CVE-2018-15209.
CPE | Name | Operator | Version |
---|---|---|---|
libtiff.so | le | 3.9.7 |