libtiff.so is vulnerable to denial of service (DoS). The attacker can trigger the attacker by sending a malicious TIFF image to the cpTags
in tools/tiff2bw.c
and tools/pal2rgb.c
, causing two out-of-bounds writes that can crash the application or cause arbitrary code to be executed.
CPE | Name | Operator | Version |
---|---|---|---|
libtiff.so | le | 5.2.0 |