CVE-2017-5849

tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted tiff image file, related to transposing width and height values.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:netpbm_project:netpbm:10.47.63:*:*:*:*:*:*:*

Information

Published : 2017-03-15 12:59

Updated : 2017-04-07 11:03


NVD link : CVE-2017-5849

Mitre link : CVE-2017-5849


JSON object : View

CWE
CWE-125

Out-of-bounds Read

CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa

Products Affected

netpbm_project

  • netpbm

fedoraproject

  • fedora