Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 645982 (CVE-2017-18013) - <media-libs/tiff-4.0.9-r4: NULL pointer dereference in tif_print.c:TIFFPrintDirectory() causes crash
Summary: <media-libs/tiff-4.0.9-r4: NULL pointer dereference in tif_print.c:TIFFPrintD...
Status: RESOLVED FIXED
Alias: CVE-2017-18013
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: http://bugzilla.maptools.org/show_bug...
Whiteboard: B3 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2018-01-28 17:48 UTC by Ian Zimmerman
Modified: 2018-11-25 00:26 UTC (History)
0 users

See Also:
Package list:
media-libs/tiff-4.0.9-r4
Runtime testing required: ---
stable-bot: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ian Zimmerman 2018-01-28 17:48:53 UTC 
Quoting ${URL}:

In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.

Supposed upstream fix:
https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01


Reproducible: Always
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2018-02-22 00:01:20 UTC 
Fix: https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01

Not yet released.
Comment 2 Larry the Git Cow gentoo-dev 2018-05-29 01:04:06 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=afb651b9908c9fd2d24a8e347e152bc195b486bc

commit afb651b9908c9fd2d24a8e347e152bc195b486bc
Author:     Mike Frysinger <vapier@chromium.org>
AuthorDate: 2018-05-29 01:02:58 +0000
Commit:     Mike Frysinger <vapier@gentoo.org>
CommitDate: 2018-05-29 01:03:54 +0000

    media-libs/tiff: add upstream fix for CVE-2017-18013 #645982
    
    Bug: https://bugs.gentoo.org/645982

 .../tiff/files/tiff-4.0.9-CVE-2017-18013.patch     | 39 +++++++++++
 media-libs/tiff/tiff-4.0.9-r4.ebuild               | 81 ++++++++++++++++++++++
 2 files changed, 120 insertions(+)
Comment 3 Andreas Sturmlechner gentoo-dev 2018-09-18 16:26:16 UTC 
If no one else is doing it...
Comment 4 Matt Turner gentoo-dev 2018-09-18 17:16:22 UTC 
ppc/ppc64 stable
Comment 5 Mart Raudsepp gentoo-dev 2018-09-18 21:28:48 UTC 
arm64 stable
Comment 6 Mikle Kolyada (RETIRED) archtester Gentoo Infrastructure gentoo-dev Security 2018-09-19 07:39:15 UTC 
amd64 stable
Comment 7 Sergei Trofimovich (RETIRED) gentoo-dev 2018-09-19 08:57:05 UTC 
ia64 stable
Comment 8 Rolf Eike Beer archtester 2018-09-19 16:18:27 UTC 
sparc done.
Comment 9 Thomas Deutschmann (RETIRED) gentoo-dev 2018-09-19 17:37:13 UTC 
x86 stable
Comment 10 Sergei Trofimovich (RETIRED) gentoo-dev 2018-09-22 11:41:20 UTC 
hppa stable
Comment 11 Markus Meier gentoo-dev 2018-09-24 18:15:43 UTC 
arm stable
Comment 12 Tobias Klausmann (RETIRED) gentoo-dev 2018-10-02 14:03:39 UTC 
Stable on alpha.
Comment 13 Larry the Git Cow gentoo-dev 2018-10-20 15:26:41 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ebfefcea0f35de57a889f1f8dd6b50e8f4d61d7e

commit ebfefcea0f35de57a889f1f8dd6b50e8f4d61d7e
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2018-10-20 12:28:03 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2018-10-20 15:26:19 +0000

    media-libs/tiff: Security cleanup
    
    Bug: https://bugs.gentoo.org/645982
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
    Package-Manager: Portage-2.3.51, Repoman-2.3.11

 media-libs/tiff/tiff-4.0.9-r3.ebuild | 80 ------------------------------------
 1 file changed, 80 deletions(-)