Published: 12/03/2018 Updated: 05/04/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_write.c, as demonstrated by tiffdither.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libtiff libtiff 4.0.3
redhat enterprise linux server eus 7.2
redhat enterprise linux server eus 7.3
redhat enterprise linux desktop 6.0
redhat enterprise linux desktop 7.0
redhat enterprise linux server aus 7.2
redhat enterprise linux server aus 7.4
redhat enterprise linux workstation 7.0
redhat enterprise linux server tus 7.3
redhat enterprise linux server tus 7.2
redhat enterprise linux server 7.0
redhat enterprise linux server 6.0
redhat enterprise linux server aus 7.3
redhat enterprise linux server eus 7.4
redhat enterprise linux workstation 6.0
apple mac os x 10.8.5
apple mac os x 10.9.5
apple mac os x 10.10.0
apple mac os x 10.10.1
apple mac os x 10.10.2
apple mac os x 10.10.3
apple iphone os

Debian Bug report logs - #776185 tiff: CVE-2014-8127 CVE-2014-8128 CVE-2014-8130 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 25 Jan 2015 06:51:02 UTC Severity: important Tags: security, upstream Found in ver ...

USN-2553-1 introduced a regression in LibTIFF ...

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file ...

Multiple flaws have been discovered in libtiff A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files (CVE-2014-9655, CVE-2015-1547, CVE-2015-8784, CVE-2015-8683, CVE-2015-8665, CVE-2015-8781, ...

A floating point exception due to a division by zero in the tiffdither tool can be triggered with a malformed TIFF file leading to denial of service ...

CWE-369 https://github.com/vadz/libtiff/commit/3c5eb8b1be544e41d2c336191bc4936300ad7543 https://bugzilla.redhat.com/show_bug.cgi?id=1185817 http://www.conostix.com/pub/adv/CVE-2014-8130-LibTIFF-Division_By_Zero.txt http://support.apple.com/kb/HT204942 http://support.apple.com/kb/HT204941 http://openwall.com/lists/oss-security/2015/01/24/15 http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html http://bugzilla.maptools.org/show_bug.cgi?id=2483 https://security.gentoo.org/glsa/201701-16 http://www.securitytracker.com/id/1032760 http://www.securityfocus.com/bid/72353 http://rhn.redhat.com/errata/RHSA-2016-1547.html http://rhn.redhat.com/errata/RHSA-2016-1546.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185 https://usn.ubuntu.com/2553-2/https://nvd.nist.gov

CVE-2014-8130

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect