Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and previous versions allow context-dependent malicious users to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libtiff libtiff 3.4 |
||
libtiff libtiff 3.5.1 |
||
libtiff libtiff 3.6.0 |
||
libtiff libtiff 3.6.1 |
||
libtiff libtiff 3.5.6 |
||
libtiff libtiff 3.5.7 |
||
libtiff libtiff |
||
libtiff libtiff 3.5.2 |
||
libtiff libtiff 3.5.3 |
||
libtiff libtiff 3.7.0 |
||
libtiff libtiff 3.7.1 |
||
libtiff libtiff 3.5.4 |
||
libtiff libtiff 3.5.5 |
||
libtiff libtiff 3.8.0 |
||
libtiff libtiff 3.8.1 |