[3.5] tiff: Several vulnerabilities (CVE-2015-8665, CVE-2015-8683, CVE-2015-8781, CVE-2015-8782, CVE-2015-8783, CVE-2015-8784)ID: oval:org.secpod.oval:def:1800765 | Date: (C)2018-03-28 (M)2023-12-26 |
Class: PATCH | Family: unix |
CVE-2015-8665: Out-of-bounds read in tif_getimage.c tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service via the SamplesPerPixel tag in a TIFF image. Reference Patch CVE-2015-8683: out-of-bounds read in CIE Lab image format The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service via a packed TIFF image. Reference Patch CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: out-of-bounds writes for invalid images
Platform: |
Alpine Linux 3.5 |