8.8

CVE-2018-8905

Exploit
In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LibtiffLibtiff Version4.0.9
DebianDebian Linux Version7.0
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version18.04 SwEditionlts
CanonicalUbuntu Linux Version18.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.1% 0.86
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://access.redhat.com/errata/RHSA-2019:2053
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html
Third Party Advisory
Mailing List
https://www.debian.org/security/2018/dsa-4349
Third Party Advisory
https://usn.ubuntu.com/3864-1/
Third Party Advisory
http://bugzilla.maptools.org/show_bug.cgi?id=2780
Third Party Advisory
Exploit
Issue Tracking
https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow
Third Party Advisory
Exploit
https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/05/msg00008.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2018/05/msg00009.html
Third Party Advisory
Mailing List