Wind River Support Network

HomeDefectsLIN1018-1847
Fixed

LIN1018-1847 : Security Advisory - tiff - CVE-2018-14378

Created: Jul 30, 2018    Updated: Sep 13, 2022
Resolved Date: Dec 20, 2018
Found In Version: unknown
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

An issue was discovered in LibTIFF 4.0.9. A buffer overflow can occur via an invalid or empty tif argument to TIFFWriteBufferSetup in tif_write.c, and it can be exploited (at a minimum) via the following high-level library API function: TIFFWriteTile.

https://nvd.nist.gov/vuln/detail/CVE-2018-14378
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube