cpe:/a:libtiff:libtiff:4.0.7 CVE-2017-7601 2017-04-09T10:59:00.433-04:00 2018-03-21T21:29:02.593-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov BID 97511 DEBIAN DSA-3844 GENTOO GLSA-201709-27 UBUNTU USN-3602-1 MISC https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.