csaf_suse - suse-su-2018:1889-1

suse-su-2018:1889-1

Vulnerability from csaf_suse

Published

2018-07-05 06:41

Modified

2018-07-05 06:41

Summary

Security update for tiff

Notes

Title of the patch

Security update for tiff

Description of the patch

This update for tiff fixes the following security issues: These security issues were fixed: - CVE-2017-18013: Fixed a NULL pointer dereference in the tif_print.cTIFFPrintDirectory function that could have lead to denial of service (bsc#1074317). - CVE-2018-10963: Fixed an assertion failure in the TIFFWriteDirectorySec() function in tif_dirwrite.c, which allowed remote attackers to cause a denial of service via a crafted file (bsc#1092949). - CVE-2018-7456: Prevent a NULL Pointer dereference in the function TIFFPrintDirectory when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013 (bsc#1082825). - CVE-2017-11613: Prevent denial of service in the TIFFOpen function. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If the value of td_imagelength is set close to the amount of system memory, it will hang the system or trigger the OOM killer (bsc#1082332). - CVE-2018-8905: Prevent heap-based buffer overflow in the function LZWDecodeCompat via a crafted TIFF file (bsc#1086408).

Patchnames

SUSE-SLE-Module-Basesystem-15-2018-1279,SUSE-SLE-Module-Desktop-Applications-15-2018-1279

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for tiff",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for tiff fixes the following security issues:\n\nThese security issues were fixed:\n\n- CVE-2017-18013: Fixed a NULL pointer dereference in the\n  tif_print.cTIFFPrintDirectory function that could have lead to denial of\n  service (bsc#1074317).\n- CVE-2018-10963: Fixed an assertion failure in the TIFFWriteDirectorySec()\n  function in tif_dirwrite.c, which allowed remote attackers to cause a denial\n  of service via a crafted file (bsc#1092949).\n- CVE-2018-7456: Prevent a NULL Pointer dereference in the function\n  TIFFPrintDirectory when using the tiffinfo tool to print crafted TIFF\n  information, a different vulnerability than CVE-2017-18013 (bsc#1082825).\n- CVE-2017-11613: Prevent denial of service in the TIFFOpen function. During\n  the TIFFOpen process, td_imagelength is not checked. The value of\n  td_imagelength can be directly controlled by an input file. In the\n  ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called\n  based on td_imagelength. If the value of td_imagelength is set close to the\n  amount of system memory, it will hang the system or trigger the OOM killer\n  (bsc#1082332).\n- CVE-2018-8905: Prevent heap-based buffer overflow in the function\n  LZWDecodeCompat via a crafted TIFF file (bsc#1086408).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Module-Basesystem-15-2018-1279,SUSE-SLE-Module-Desktop-Applications-15-2018-1279",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1889-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:1889-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181889-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:1889-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-July/004247.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074317",
        "url": "https://bugzilla.suse.com/1074317"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082332",
        "url": "https://bugzilla.suse.com/1082332"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082825",
        "url": "https://bugzilla.suse.com/1082825"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086408",
        "url": "https://bugzilla.suse.com/1086408"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1092949",
        "url": "https://bugzilla.suse.com/1092949"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-11613 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-11613/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18013 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18013/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10963 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10963/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-7456 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-7456/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8905 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8905/"
      }
    ],
    "title": "Security update for tiff",
    "tracking": {
      "current_release_date": "2018-07-05T06:41:28Z",
      "generator": {
        "date": "2018-07-05T06:41:28Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:1889-1",
      "initial_release_date": "2018-07-05T06:41:28Z",
      "revision_history": [
        {
          "date": "2018-07-05T06:41:28Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libtiff-devel-4.0.9-5.9.1.aarch64",
                "product": {
                  "name": "libtiff-devel-4.0.9-5.9.1.aarch64",
                  "product_id": "libtiff-devel-4.0.9-5.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libtiff5-4.0.9-5.9.1.aarch64",
                "product": {
                  "name": "libtiff5-4.0.9-5.9.1.aarch64",
                  "product_id": "libtiff5-4.0.9-5.9.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libtiff-devel-4.0.9-5.9.1.ppc64le",
                "product": {
                  "name": "libtiff-devel-4.0.9-5.9.1.ppc64le",
                  "product_id": "libtiff-devel-4.0.9-5.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libtiff5-4.0.9-5.9.1.ppc64le",
                "product": {
                  "name": "libtiff5-4.0.9-5.9.1.ppc64le",
                  "product_id": "libtiff5-4.0.9-5.9.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libtiff-devel-4.0.9-5.9.1.s390x",
                "product": {
                  "name": "libtiff-devel-4.0.9-5.9.1.s390x",
                  "product_id": "libtiff-devel-4.0.9-5.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libtiff5-4.0.9-5.9.1.s390x",
                "product": {
                  "name": "libtiff5-4.0.9-5.9.1.s390x",
                  "product_id": "libtiff5-4.0.9-5.9.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libtiff-devel-4.0.9-5.9.1.x86_64",
                "product": {
                  "name": "libtiff-devel-4.0.9-5.9.1.x86_64",
                  "product_id": "libtiff-devel-4.0.9-5.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libtiff5-4.0.9-5.9.1.x86_64",
                "product": {
                  "name": "libtiff5-4.0.9-5.9.1.x86_64",
                  "product_id": "libtiff5-4.0.9-5.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libtiff5-32bit-4.0.9-5.9.1.x86_64",
                "product": {
                  "name": "libtiff5-32bit-4.0.9-5.9.1.x86_64",
                  "product_id": "libtiff5-32bit-4.0.9-5.9.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Desktop Applications 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Desktop Applications 15",
                  "product_id": "SUSE Linux Enterprise Module for Desktop Applications 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-desktop-applications:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff-devel-4.0.9-5.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64"
        },
        "product_reference": "libtiff-devel-4.0.9-5.9.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff-devel-4.0.9-5.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le"
        },
        "product_reference": "libtiff-devel-4.0.9-5.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff-devel-4.0.9-5.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x"
        },
        "product_reference": "libtiff-devel-4.0.9-5.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff-devel-4.0.9-5.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64"
        },
        "product_reference": "libtiff-devel-4.0.9-5.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff5-4.0.9-5.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64"
        },
        "product_reference": "libtiff5-4.0.9-5.9.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff5-4.0.9-5.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le"
        },
        "product_reference": "libtiff5-4.0.9-5.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff5-4.0.9-5.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x"
        },
        "product_reference": "libtiff5-4.0.9-5.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff5-4.0.9-5.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64"
        },
        "product_reference": "libtiff5-4.0.9-5.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libtiff5-32bit-4.0.9-5.9.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15",
          "product_id": "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        },
        "product_reference": "libtiff5-32bit-4.0.9-5.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Desktop Applications 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-11613",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-11613"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If we set the value of td_imagelength close to the amount of system memory, it will hang the system or trigger the OOM killer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-11613",
          "url": "https://www.suse.com/security/cve/CVE-2017-11613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082332 for CVE-2017-11613",
          "url": "https://bugzilla.suse.com/1082332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106853 for CVE-2017-11613",
          "url": "https://bugzilla.suse.com/1106853"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-07-05T06:41:28Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-11613"
    },
    {
      "cve": "CVE-2017-18013",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18013"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18013",
          "url": "https://www.suse.com/security/cve/CVE-2017-18013"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074317 for CVE-2017-18013",
          "url": "https://bugzilla.suse.com/1074317"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082825 for CVE-2017-18013",
          "url": "https://bugzilla.suse.com/1082825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-07-05T06:41:28Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-18013"
    },
    {
      "cve": "CVE-2018-10963",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10963"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10963",
          "url": "https://www.suse.com/security/cve/CVE-2018-10963"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092949 for CVE-2018-10963",
          "url": "https://bugzilla.suse.com/1092949"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-07-05T06:41:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10963"
    },
    {
      "cve": "CVE-2018-7456",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-7456"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of the TIFFPrintDirectory function that was not addressed by the CVE-2017-18013 patch.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-7456",
          "url": "https://www.suse.com/security/cve/CVE-2018-7456"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074317 for CVE-2018-7456",
          "url": "https://bugzilla.suse.com/1074317"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082825 for CVE-2018-7456",
          "url": "https://bugzilla.suse.com/1082825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-07-05T06:41:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-7456"
    },
    {
      "cve": "CVE-2018-8905",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8905"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
          "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8905",
          "url": "https://www.suse.com/security/cve/CVE-2018-8905"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1086408 for CVE-2018-8905",
          "url": "https://bugzilla.suse.com/1086408"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff-devel-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15:libtiff5-4.0.9-5.9.1.x86_64",
            "SUSE Linux Enterprise Module for Desktop Applications 15:libtiff5-32bit-4.0.9-5.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-07-05T06:41:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8905"
    }
  ]
}

CVE-2017-11613 (GCVE-0-2017-11613)

Vulnerability from cvelistv5

Published

2017-07-26 08:00

Modified

2024-08-05 18:12

Severity ?

CWE

Summary

In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If we set the value of td_imagelength close to the amount of system memory, it will hang the system or trigger the OOM killer.

References

►

URL

Tags

	http://www.securityfocus.com/bid/99977	vdb-entry, x_refsource_BID
	https://usn.ubuntu.com/3606-1/	vendor-advisory, x_refsource_UBUNTU
	https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f	x_refsource_MISC
	https://lists.debian.org/debian-lts-announce/2018/05/msg00022.html	mailing-list, x_refsource_MLIST
	https://www.debian.org/security/2018/dsa-4349	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:12:40.627Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "99977",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99977"
          },
          {
            "name": "USN-3606-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3606-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f"
          },
          {
            "name": "[debian-lts-announce] 20180531 [SECURITY] [DLA 1391-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00022.html"
          },
          {
            "name": "DSA-4349",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4349"
          },
          {
            "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-07-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If we set the value of td_imagelength close to the amount of system memory, it will hang the system or trigger the OOM killer."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-12-01T10:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "99977",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99977"
        },
        {
          "name": "USN-3606-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3606-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f"
        },
        {
          "name": "[debian-lts-announce] 20180531 [SECURITY] [DLA 1391-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00022.html"
        },
        {
          "name": "DSA-4349",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4349"
        },
        {
          "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-11613",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If we set the value of td_imagelength close to the amount of system memory, it will hang the system or trigger the OOM killer."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "99977",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99977"
            },
            {
              "name": "USN-3606-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3606-1/"
            },
            {
              "name": "https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f",
              "refsource": "MISC",
              "url": "https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f"
            },
            {
              "name": "[debian-lts-announce] 20180531 [SECURITY] [DLA 1391-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00022.html"
            },
            {
              "name": "DSA-4349",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4349"
            },
            {
              "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-11613",
    "datePublished": "2017-07-26T08:00:00",
    "dateReserved": "2017-07-25T00:00:00",
    "dateUpdated": "2024-08-05T18:12:40.627Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-10963 (GCVE-0-2018-10963)

Vulnerability from cvelistv5

Published

2018-05-10 02:00

Modified

2024-08-05 07:54

Severity ?

CWE

Summary

The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726.

References

►

URL

Tags

	http://bugzilla.maptools.org/show_bug.cgi?id=2795	x_refsource_MISC
	https://usn.ubuntu.com/3864-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.debian.org/security/2018/dsa-4349	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2019:2053	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:54:36.220Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2795"
          },
          {
            "name": "USN-3864-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3864-1/"
          },
          {
            "name": "DSA-4349",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4349"
          },
          {
            "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
          },
          {
            "name": "RHSA-2019:2053",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2053"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-05-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-08-06T16:06:33",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2795"
        },
        {
          "name": "USN-3864-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3864-1/"
        },
        {
          "name": "DSA-4349",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4349"
        },
        {
          "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
        },
        {
          "name": "RHSA-2019:2053",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2053"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-10963",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://bugzilla.maptools.org/show_bug.cgi?id=2795",
              "refsource": "MISC",
              "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2795"
            },
            {
              "name": "USN-3864-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3864-1/"
            },
            {
              "name": "DSA-4349",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4349"
            },
            {
              "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
            },
            {
              "name": "RHSA-2019:2053",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2053"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-10963",
    "datePublished": "2018-05-10T02:00:00",
    "dateReserved": "2018-05-09T00:00:00",
    "dateUpdated": "2024-08-05T07:54:36.220Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-8905 (GCVE-0-2018-8905)

Vulnerability from cvelistv5

Published

2018-03-22 04:00

Modified

2024-08-05 07:10

Severity ?

CWE

Summary

In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.

References

►

URL

Tags

	http://bugzilla.maptools.org/show_bug.cgi?id=2780	x_refsource_MISC
	https://lists.debian.org/debian-lts-announce/2018/05/msg00009.html	mailing-list, x_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2018/05/msg00008.html	mailing-list, x_refsource_MLIST
	https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow	x_refsource_MISC
	https://usn.ubuntu.com/3864-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.debian.org/security/2018/dsa-4349	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html	mailing-list, x_refsource_MLIST
	https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2019:2053	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:10:46.630Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2780"
          },
          {
            "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1378-1] tiff3 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00009.html"
          },
          {
            "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1377-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00008.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow"
          },
          {
            "name": "USN-3864-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3864-1/"
          },
          {
            "name": "DSA-4349",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4349"
          },
          {
            "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d"
          },
          {
            "name": "RHSA-2019:2053",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2053"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-03-21T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-08-06T16:06:33",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2780"
        },
        {
          "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1378-1] tiff3 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00009.html"
        },
        {
          "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1377-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00008.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow"
        },
        {
          "name": "USN-3864-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3864-1/"
        },
        {
          "name": "DSA-4349",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4349"
        },
        {
          "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d"
        },
        {
          "name": "RHSA-2019:2053",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2053"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-8905",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://bugzilla.maptools.org/show_bug.cgi?id=2780",
              "refsource": "MISC",
              "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2780"
            },
            {
              "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1378-1] tiff3 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00009.html"
            },
            {
              "name": "[debian-lts-announce] 20180514 [SECURITY] [DLA 1377-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00008.html"
            },
            {
              "name": "https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow",
              "refsource": "MISC",
              "url": "https://github.com/halfbitteam/POCs/tree/master/libtiff-4.08_tiff2ps_heap_overflow"
            },
            {
              "name": "USN-3864-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3864-1/"
            },
            {
              "name": "DSA-4349",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4349"
            },
            {
              "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
            },
            {
              "name": "https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d",
              "refsource": "CONFIRM",
              "url": "https://gitlab.com/libtiff/libtiff/commit/58a898cb4459055bb488ca815c23b880c242a27d"
            },
            {
              "name": "RHSA-2019:2053",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2053"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-8905",
    "datePublished": "2018-03-22T04:00:00",
    "dateReserved": "2018-03-21T00:00:00",
    "dateUpdated": "2024-08-05T07:10:46.630Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-7456 (GCVE-0-2018-7456)

Vulnerability from cvelistv5

Published

2018-02-24 06:00

Modified

2024-08-05 06:24

Severity ?

CWE

Summary

A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of the TIFFPrintDirectory function that was not addressed by the CVE-2017-18013 patch.)

References

►

URL

Tags

	https://lists.debian.org/debian-lts-announce/2018/04/msg00011.html	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/3864-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.debian.org/security/2018/dsa-4349	vendor-advisory, x_refsource_DEBIAN
	https://github.com/xiaoqx/pocs/tree/master/libtiff	x_refsource_MISC
	http://bugzilla.maptools.org/show_bug.cgi?id=2778	x_refsource_MISC
	https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html	mailing-list, x_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2018/04/msg00010.html	mailing-list, x_refsource_MLIST
	https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2019:2051	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:2053	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T06:24:12.048Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1347-1] tiff3 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00011.html"
          },
          {
            "name": "USN-3864-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3864-1/"
          },
          {
            "name": "DSA-4349",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4349"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/xiaoqx/pocs/tree/master/libtiff"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2778"
          },
          {
            "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
          },
          {
            "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1346-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00010.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b"
          },
          {
            "name": "RHSA-2019:2051",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2051"
          },
          {
            "name": "RHSA-2019:2053",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2053"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-23T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of the TIFFPrintDirectory function that was not addressed by the CVE-2017-18013 patch.)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-01-29T19:42:18",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1347-1] tiff3 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00011.html"
        },
        {
          "name": "USN-3864-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3864-1/"
        },
        {
          "name": "DSA-4349",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4349"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/xiaoqx/pocs/tree/master/libtiff"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2778"
        },
        {
          "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
        },
        {
          "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1346-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00010.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b"
        },
        {
          "name": "RHSA-2019:2051",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2051"
        },
        {
          "name": "RHSA-2019:2053",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2053"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-7456",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of the TIFFPrintDirectory function that was not addressed by the CVE-2017-18013 patch.)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1347-1] tiff3 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00011.html"
            },
            {
              "name": "USN-3864-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3864-1/"
            },
            {
              "name": "DSA-4349",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4349"
            },
            {
              "name": "https://github.com/xiaoqx/pocs/tree/master/libtiff",
              "refsource": "MISC",
              "url": "https://github.com/xiaoqx/pocs/tree/master/libtiff"
            },
            {
              "name": "http://bugzilla.maptools.org/show_bug.cgi?id=2778",
              "refsource": "MISC",
              "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2778"
            },
            {
              "name": "[debian-lts-announce] 20180702 [SECURITY] [DLA 1411-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html"
            },
            {
              "name": "[debian-lts-announce] 20180416 [SECURITY] [DLA 1346-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00010.html"
            },
            {
              "name": "https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b",
              "refsource": "CONFIRM",
              "url": "https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b"
            },
            {
              "name": "RHSA-2019:2051",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2051"
            },
            {
              "name": "RHSA-2019:2053",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2053"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-7456",
    "datePublished": "2018-02-24T06:00:00",
    "dateReserved": "2018-02-23T00:00:00",
    "dateUpdated": "2024-08-05T06:24:12.048Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2017-18013 (GCVE-0-2017-18013)

Vulnerability from cvelistv5

Published

2018-01-01 08:00

Modified

2024-08-05 21:06

Severity ?

CWE

Summary

In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.

References

►

URL

Tags

	https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/3606-1/	vendor-advisory, x_refsource_UBUNTU
	https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html	mailing-list, x_refsource_MLIST
	https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01	x_refsource_CONFIRM
	https://usn.ubuntu.com/3602-1/	vendor-advisory, x_refsource_UBUNTU
	http://www.securityfocus.com/bid/102345	vdb-entry, x_refsource_BID
	https://www.debian.org/security/2018/dsa-4100	vendor-advisory, x_refsource_DEBIAN
	http://bugzilla.maptools.org/show_bug.cgi?id=2770	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:06:49.958Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1259-1] tiff security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html"
          },
          {
            "name": "USN-3606-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3606-1/"
          },
          {
            "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1260-1] tiff3 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01"
          },
          {
            "name": "USN-3602-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3602-1/"
          },
          {
            "name": "102345",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102345"
          },
          {
            "name": "DSA-4100",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4100"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2770"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-01-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-03-27T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1259-1] tiff security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html"
        },
        {
          "name": "USN-3606-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3606-1/"
        },
        {
          "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1260-1] tiff3 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01"
        },
        {
          "name": "USN-3602-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3602-1/"
        },
        {
          "name": "102345",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102345"
        },
        {
          "name": "DSA-4100",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4100"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2770"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-18013",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1259-1] tiff security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html"
            },
            {
              "name": "USN-3606-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3606-1/"
            },
            {
              "name": "[debian-lts-announce] 20180127 [SECURITY] [DLA 1260-1] tiff3 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html"
            },
            {
              "name": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01",
              "refsource": "CONFIRM",
              "url": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01"
            },
            {
              "name": "USN-3602-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3602-1/"
            },
            {
              "name": "102345",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102345"
            },
            {
              "name": "DSA-4100",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4100"
            },
            {
              "name": "http://bugzilla.maptools.org/show_bug.cgi?id=2770",
              "refsource": "CONFIRM",
              "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2770"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-18013",
    "datePublished": "2018-01-01T08:00:00",
    "dateReserved": "2018-01-01T00:00:00",
    "dateUpdated": "2024-08-05T21:06:49.958Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2018:1889-1

Vulnerability from csaf_suse

CVE-2017-11613 (GCVE-0-2017-11613)

Vulnerability from cvelistv5

CVE-2018-10963 (GCVE-0-2018-10963)

Vulnerability from cvelistv5

CVE-2018-8905 (GCVE-0-2018-8905)

Vulnerability from cvelistv5

CVE-2018-7456 (GCVE-0-2018-7456)

Vulnerability from cvelistv5

CVE-2017-18013 (GCVE-0-2017-18013)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature