Out-of-bounds read vulnerability in bmp2tiff in libtiff via crafted BMP imageID: oval:org.secpod.oval:def:24760 | Date: (C)2015-06-08 (M)2023-12-26 |
Class: VULNERABILITY | Family: unix |
The host is installed with libtiff in RHEL 5, 6 or 7 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle crafted BMP image. Successful exploitation could allow attackers to execute arbitrary code or crash the service.
Platform: |
Red Hat Enterprise Linux 5 |
Red Hat Enterprise Linux 6 |
Red Hat Enterprise Linux 7 |