In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1932037 | Issue Tracking Patch Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BMHBYFMX3D5VGR6Y3RXTTH3Q4NF4E6IG/ | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202104-06 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20210521-0009/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2021-03-09 12:15
Updated : 2022-07-29 20:48
NVD link : CVE-2020-35522
Mitre link : CVE-2020-35522
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
redhat
- enterprise_linux
netapp
- ontap_select_deploy_administration_utility
libtiff
- libtiff
fedoraproject
- fedora