Wind River Support Network

HomeDefectsLIN7-8207
Acknowledged

LIN7-8207 : Security Advisory - libtiff - CVE-2017-9117

Created: May 25, 2017    Updated: May 29, 2018
Found In Version: 7.0.0.24
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.

https://nvd.nist.gov/vuln/detail/CVE-2017-9117

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube