Scheduled maintenance: Some features related to account registration and licensing may be temporarily unavailable from Friday (May 8) at 1 PM to Sunday (May 10) at 5 PM (PST).

Wind River Support Network

HomeDefectsLIN9-6864

Fixed

LIN9-6864 : Security Advisory - libtiff - CVE-2018-10779

Created: May 15, 2018 Updated: Nov 6, 2018

Resolved Date: Oct 31, 2018

Found In Version: 9.0.0.15

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff.

https://nvd.nist.gov/vuln/detail/CVE-2018-10779

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-10779