Published: 09/09/2021 Updated: 30/11/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Buffer Overflow in LibTiff v4.0.10 allows malicious users to cause a denial of service via the "TIFFVGetField" funtion in the component 'libtiff/tif_dir.c'.

Vulnerable Product	Search on Vulmon	Subscribe to Product
simplesystems libtiff 4.0.10
debian debian linux 11.0

A flaw was discovered in tiff, a Tag Image File Format library, which may result in denial of service or the execution of arbitrary code if malformed image files are processed For the oldstable distribution (buster), this problem has been fixed in version 410+git191117-2~deb10u3 We recommend that you upgrade your tiff packages For the detailed ...

CWE-787 http://bugzilla.maptools.org/show_bug.cgi?id=2851 https://gitlab.com/libtiff/libtiff/-/issues/158 https://gitlab.com/libtiff/libtiff/-/merge_requests/119 https://security.netapp.com/advisory/ntap-20211004-0005/https://www.debian.org/security/2021/dsa-4997 https://nvd.nist.gov https://www.debian.org/security/2021/dsa-4997

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-19143

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect