Vulnerability & Exploit Database

Back to search

Amazon Linux AMI: CVE-2014-9330: Security patch for libtiff (ALAS-2016-733)

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:N/I:N/A:P) January 20, 2015 August 22, 2016 February 02, 2018

Description

Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

amazon-linux-upgrade-libtiff

Related Vulnerabilities