[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

tiff: integer overflow leading to heap-based buffer overflow in tif_getimage.c (CVE-2019-17546)

ID: oval:org.secpod.oval:def:59773Date: (C)2019-12-04   (M)2023-12-20
Class: PATCHFamily: unix




tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.

Platform:
Alpine Linux 3.10
Alpine Linux 3.8
Alpine Linux 3.9
Alpine Linux 3.7
Product:
tiff
Reference:
10927
CVE-2019-17546
CVE    1
CVE-2019-17546

© SecPod Technologies