Sign In

CVE-2017-16232

ADVISORY - nist

Summary

LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third parties were unable to reproduce the issue

EPSS Score: 0.01738 (0.817)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-772

Missing Release of Resource after Effective Lifetime

ADVISORY - redhat

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Impacted images

Advisories

NIST

CREATED

UPDATED

ADVISORY IDCVE-2017-16232
EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-772

CVSS SCORE

7.5high

Alpine

CREATED

UPDATED

ADVISORY IDCVE-2017-16232
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

UPDATED

ADVISORY IDCVE-2017-16232
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

UPDATED

ADVISORY IDCVE-2017-16232
EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5low

Red Hat

CREATED

UPDATED

ADVISORY IDCVE-2017-16232
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-200

CVSS SCORE

3.3low