|
|
Log in / Subscribe / Register

libtiff: denial of service

Package(s):libtiff CVE #(s):CVE-2016-3658
Created:November 2, 2016 Updated:November 2, 2016
Description: From the CVE entry:

The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.

Alerts:
Mageia MGASA-2016-0361 libtiff 2016-11-02
Gentoo 201701-16 tiff 2017-01-09
openSUSE openSUSE-SU-2017:0074-1 tiff 2017-01-08
openSUSE openSUSE-SU-2016:3035-1 tiff 2016-12-07
Arch Linux ASA-201611-26 libtiff 2016-11-25
Arch Linux ASA-201611-27 lib32-libtiff 2016-11-25
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds