vulnerability
CentOS Linux: CVE-2018-12900: Moderate: libtiff security update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jun 26, 2018 | Aug 28, 2019 | May 25, 2023 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jun 26, 2018
Added
Aug 28, 2019
Modified
May 25, 2023
Description
Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.
Solution(s)
centos-upgrade-libtiffcentos-upgrade-libtiff-debuginfocentos-upgrade-libtiff-debugsourcecentos-upgrade-libtiff-develcentos-upgrade-libtiff-staticcentos-upgrade-libtiff-toolscentos-upgrade-libtiff-tools-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.