Wind River Support Network

HomeDefectsLIN7-9635
Fixed

LIN7-9635 : Security Advisory - libtiff - CVE-2018-8905

Created: Apr 2, 2018    Updated: Oct 9, 2018
Resolved Date: Jun 21, 2018
Found In Version: 7.0.0.28
Fix Version: 7.0.0.29
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.

https://nvd.nist.gov/vuln/detail/CVE-2018-8905

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube