Vulnerability & Exploit Database

Back to search

Oracle Linux: (CVE-2014-9330) (Multiple Advisories): libtiff security update

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:N/I:N/A:P) January 20, 2015 August 02, 2016 January 22, 2018

Description

Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

oracle-linux-upgrade-libtiff

Related Vulnerabilities