Wind River Support Network

HomeDefectsLIN8-8319

Fixed

LIN8-8319 : Security Advisory - libtiff - CVE-2017-17095

Created: Dec 14, 2017 Updated: Dec 3, 2018

Resolved Date: Aug 27, 2018

Found In Version: 8.0.0.24

Fix Version: 8.0.0.27

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.

https://nvd.nist.gov/vuln/detail/CVE-2017-17095

Other Downloads

Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-17095