8.8

CVE-2016-5314

Exploit
Buffer overflow in the PixarLogDecode function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer with rgb2ycbcr.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LibtiffLibtiff Version <= 4.0.6
OpensuseLeap Version42.1
OpensuseOpensuse Version13.1
OpensuseOpensuse Version13.2
RedhatEnterprise Linux Version6.0
RedhatEnterprise Linux Version7.0
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.65% 0.906
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
Third Party Advisory
https://security.gentoo.org/glsa/201701-16
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-07/msg00087.html
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-09/msg00060.html
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-09/msg00090.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00017.html
Third Party Advisory
http://bugzilla.maptools.org/show_bug.cgi?id=2554
Exploit
Issue Tracking
http://www.openwall.com/lists/oss-security/2016/06/15/1
Mailing List
http://www.openwall.com/lists/oss-security/2016/06/15/9
Mailing List
http://www.openwall.com/lists/oss-security/2016/06/30/3
Mailing List
http://www.securityfocus.com/bid/91195
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/91245
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1346687
Third Party Advisory
Issue Tracking
https://github.com/vadz/libtiff/commit/391e77fcd217e78b2c51342ac3ddb7100ecacdd2
Patch
https://www.debian.org/security/2017/dsa-3762
Third Party Advisory