Wind River Support Network

HomeDefectsLIN7-7055

Fixed

LIN7-7055 : Security Advisory - libtiff - CVE-2016-9540

Created: Nov 24, 2016 Updated: Sep 8, 2018

Resolved Date: Nov 28, 2016

Found In Version: 7.0.0.21

Fix Version: 7.0.0.22

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images with odd tile width versus image width. Reported as MSVR 35103, aka cpStripToTile heap-buffer-overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9540

Other Downloads

Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-9540