Wind River Support Network

HomeDefectsLIN7-9635
Fixed

LIN7-9635 : Security Advisory - libtiff - CVE-2018-8905

Created: Apr 2, 2018    Updated: Oct 9, 2018
Resolved Date: Jun 21, 2018
Found In Version: 7.0.0.28
Fix Version: 7.0.0.29
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.

https://nvd.nist.gov/vuln/detail/CVE-2018-8905

Other Downloads


CVEs


Live chat
Online