Remote Yes

Type Denial of service

Description

A security issue has been found in libtiff before 4.0.8, where a crafted TIFF file can trigger an undefined behavior.

AVG-817 lib32-libtiff 4.0.7-2 4.0.7-3 Medium Fixed

AVG-237 libtiff 4.0.7-2 4.0.7-3 Medium Fixed

28 Apr 2017 ASA-201704-10 AVG-237 libtiff Medium multiple issues

http://seclists.org/oss-sec/2017/q2/39
https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490