Wind River Support Network

HomeDefectsLIN9-6308

Fixed

LIN9-6308 : Security Advisory - libtiff - CVE-2018-5784

Created: Jan 30, 2018 Updated: Dec 3, 2018

Resolved Date: Mar 9, 2018

Found In Version: 9.0.0.13

Fix Version: 9.0.0.15

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function of tif_dir.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file. This occurs because the declared number of directory entries is not validated against the actual number of directory entries.

https://nvd.nist.gov/vuln/detail/CVE-2018-5784

Other Downloads

Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-5784