Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 634784 (CVE-2017-9117, CVE-2017-9147, CVE-2017-9815) - <media-libs/tiff-4.0.8: Multiple vulnerabilities
Summary: <media-libs/tiff-4.0.8: Multiple vulnerabilities
Alias: CVE-2017-9117, CVE-2017-9147, CVE-2017-9815
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
Whiteboard: B3 [glsa? cve]
Depends on: CVE-2017-7592, CVE-2017-7593, CVE-2017-7594
  Show dependency tree
Reported: 2017-10-19 15:51 UTC by GLSAMaker/CVETool Bot
Modified: 2018-01-26 11:23 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2017-10-19 15:51:30 UTC
CVE-2017-9815 (
  In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in
  libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers
  to cause a denial of service (memory leak within the function _TIFFmalloc in
  tif_unix.c) via a crafted file.

CVE-2017-9404 (
  In LibTIFF 4.0.7, a memory leak vulnerability was found in the function
  OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to
  cause a denial of service via a crafted file.

CVE-2017-9147 (
  LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in
  tif_dir.c, which might allow remote attackers to cause a denial of service
  (crash) via a crafted TIFF file.

CVE-2017-9117 (
  In LibTIFF 4.0.7, the program processes BMP images without verifying that
  biWidth and biHeight in the bitmap-information header match the actual
  input, leading to a heap-based buffer over-read in bmp2tiff.

@Maintainers LibTIFF 4.0.7 is vulnerable to multiple DoS vulnerabilites. Could you please call for 4.0.8 stabilization?
Comment 1 SpanKY gentoo-dev 2018-01-26 03:31:10 UTC
tiff-4.0.8 was stabilized via bug 618610