Wind River Support Network

HomeDefectsLIN1018-1867
Fixed

LIN1018-1867 : Security Advisory - tiff - CVE-2018-14375

Created: Jul 31, 2018    Updated: Sep 13, 2022
Resolved Date: Dec 20, 2018
Found In Version: unknown
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

An issue was discovered in LibTIFF 4.0.9. A buffer overflow vulnerability can occur via an invalid or empty tif argument to TIFFRGBAImageOK in tif_getimage.c, and it can be exploited (at a minimum) via the following high-level library API functions: TIFFReadRGBAImage, TIFFRGBAImageOK, and TIFFRGBAImageBegin.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14375
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube