cpe:/a:libtiff:libtiff:4.0.7 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~ cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~ cpe:/o:debian:debian_linux:8.0 cpe:/o:debian:debian_linux:9.0 cpe:/o:debian:debian_linux:10.0 CVE-2017-9404 2017-06-02T15:29:00.213-04:00 2019-10-02T20:03:26.223-04:00 4.3 NETWORK MEDIUM NONE NONE NONE PARTIAL http://nvd.nist.gov 2019-03-19T09:08:21.487-04:00 DEBIAN DSA-3903 UBUNTU USN-3602-1 CONFIRM http://bugzilla.maptools.org/show_bug.cgi?id=2688 In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.