oss-sec mailing list archives
CVE Request: tiff: potential out-of-bound write in NeXTDecode()
From: Salvatore Bonaccorso <carnil () debian org>
Date: Sun, 24 Jan 2016 16:37:43 +0100
Hi Could you assign a CVE for the following issue in tiff: http://bugzilla.maptools.org/show_bug.cgi?id=2508
2015-12-27 Even Rouault <even.rouault at spatialys.com>
* libtiff/tif_next.c: fix potential out-of-bound write in NeXTDecode()
triggered by http://lcamtuf.coredump.cx/afl/vulns/libtiff5.tif
(bugzilla #2508)
Fixing commit: https://github.com/vadz/libtiff/commit/b18012dae552f85dcc5c57d3bf4e997a15b1cc1c Regards, Salvatore
Current thread:
- CVE Request: tiff: potential out-of-bound write in NeXTDecode() Salvatore Bonaccorso (Jan 24)
- Re: CVE Request: tiff: potential out-of-bound write in NeXTDecode() cve-assign (Jan 24)