SB2017040847 - Slackware Linux update for libtiff

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017040847

SB2017040847 - Slackware Linux update for libtiff

Published: April 8, 2017 Updated: April 24, 2025

Security Bulletin ID SB2017040847
Severity
High
Patch available
YES
Number of vulnerabilities 11
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 9% Medium 64% Low 27%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 11 secuirty vulnerabilities.


1) Out-of-bounds read (CVE-ID: CVE-2014-8127)

The vulnerability allows a remote attacker to gain access to perform denial of service (DoS) attack.

The vulnerability exists due to a boundary condition within the tif_dir.c function in the thumbnail tool, (2) compresscontig function file. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and crash the affected application.


2) Buffer overflow (CVE-ID: CVE-2015-8665)

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image.


3) Buffer overflow (CVE-ID: CVE-2015-8683)

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a packed TIFF image.


4) Division by zero (CVE-ID: CVE-2016-3622)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to divide-by-zero error within The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier. A remote attacker can perform a denial of service (divide-by-zero error) via a crafted TIFF image.


5) Division by zero (CVE-ID: CVE-2016-3623)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to divide-by-zero error within The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier. A remote attacker can perform a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.


6) Out-of-bounds read (CVE-ID: CVE-2016-3658)

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.


7) Buffer overflow (CVE-ID: CVE-2016-5321)

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service (invalid read and crash) via a crafted tiff image.


8) Division by zero (CVE-ID: CVE-2016-5323)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to divide-by-zero error within The _TIFFFax3fillruns function in libtiff before 4.0.6. A remote attacker can perform a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.


9) Remote code execution (CVE-ID: CVE-2016-5652)

The vulnerability allows a remote unauthenticated user to execute arbitrary code execution om the target system.
The weakness exists due to improper handling of compressed, TIFF images. By convincing the victim to open a file with specially crafted TIFF images, attackers can trigger a heap-buffer overflow and execute arbitrary code.
Successful exploitation of the vulnerability results in arbitrary code execution.

10) Out-of-bounds read (CVE-ID: CVE-2016-9273)

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

tiffsplit in libtiff 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file, related to changing td_nstrips in TIFF_STRIPCHOP mode.


11) NULL pointer dereference (CVE-ID: CVE-2016-9448)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in LibTiff 4.0.6 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by setting the tags TIFF_SETGET_C16ASCII or TIFF_SETGET_C32_ASCII to values that access 0-byte arrays. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9297. A remote attacker can perform a denial of service (DoS) attack.


Remediation

Install update from vendor's website.

References