← voltar
CVE-2014-8129

CVE-2014-8129

EPSS 3.9%
LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugzilla.maptools.org/show_bug.cgi?id=2487http://bugzilla.maptools.org/show_bug.cgi?id=2488http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlhttp://openwall.com/lists/oss-security/2015/01/24/15http://rhn.redhat.com/errata/RHSA-2016-1546.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1547.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1185815https://security.gentoo.org/glsa/201701-16http://support.apple.com/kb/HT204941http://support.apple.com/kb/HT204942https://www.debian.org/security/2015/dsa-3273