Wind River Support Network

HomeDefectsLIN8-6760
Acknowledged

LIN8-6760 : Security Advisory - libtiff - CVE-2017-9117

Created: May 25, 2017    Updated: May 29, 2018
Found In Version: 8.0.0.17
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.

https://nvd.nist.gov/vuln/detail/CVE-2017-9117

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube