CVE-2017-5225

Related Files

Gentoo Linux Security Advisory 201709-27

Posted Sep 27, 2017

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201709-27 - Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. Versions less than 4.0.8 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2016-10267, CVE-2016-10268, CVE-2017-5225, CVE-2017-5563, CVE-2017-7592, CVE-2017-7593, CVE-2017-7594, CVE-2017-7595, CVE-2017-7596, CVE-2017-7597, CVE-2017-7598, CVE-2017-7599, CVE-2017-7600, CVE-2017-7601, CVE-2017-7602, CVE-2017-9403

SHA-256 | 063099c971a240f228a2cccdc7a688d44d95300bcfd47b1fddd1ac9b8d180bdd

Download | Favorite | View

Ubuntu Security Notice USN-3212-4

Posted Aug 7, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3212-4 - USN-3212-1 fixed several issues in LibTIFF. This update provides a subset of corresponding update for Ubuntu 12.04 ESM. Mei Wang discovered a multiple integer overflows in LibTIFF which allows remote attackers to cause a denial of service or execute arbitrary code via a crafted TIFF image, which triggers an out-of-bounds write. It was discovered that LibTIFF is vulnerable to a heap buffer overflow in the resulting in DoS or code execution via a crafted BitsPerSample value. Various other issues were also addressed.

tags | advisory, remote, denial of service, overflow, arbitrary, code execution

systems | linux, ubuntu

advisories | CVE-2016-3945, CVE-2017-5225

SHA-256 | 625841e6e136c10df9842e2ab1d565a61bef90e5e8d2f253eb6dd50f01f6ddc9

Download | Favorite | View