LibTIFF - (bulletinjan2019)ID: oval:org.secpod.oval:def:2103569 | Date: (C)2020-01-06 (M)2022-10-10 |
Class: PATCH | Family: unix |
newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a different vulnerability than CVE-2018-15209.
Product: |
x11/server/xvnc |
x11/library/toolkit/fltk |
system/display-manager/gdm |
system/display-manager/desktop-startup |
library/glib2 |
library/gd |
image/library/libtiff |
desktop/remote-desktop/tigervnc |