Your submission was sent successfully! Close

CVE-2016-9532

Published: 6 February 2017

Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted tif file.

Priority

Low

CVSS 3 base score: 5.5

Status

Package Release Status
tiff
Launchpad, Ubuntu, Debian
artful Not vulnerable
(4.0.7-1)
precise Ignored

trusty
Released (4.0.3-7ubuntu0.6)
upstream
Released (4.0.7-1)
xenial
Released (4.0.6-1ubuntu0.1)
yakkety
Released (4.0.6-2ubuntu0.1)
zesty Not vulnerable
(4.0.7-1)