In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack.
Improper Restriction of Operations within the Bounds of a Memory Buffer
Improper Initialization
-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| debian/jbigkit | deb | debian | 12 | >=2.1-6.1 | Not yet available |
| debian/jbigkit | deb | debian | 13 | >=2.1-6.1 | Not yet available |
| debian/jbigkit | deb | debian | 11 | >=2.1-3.1 | Not yet available |
| debian/jbigkit | deb | debian | 10 | >=2.1-3.1 | Not yet available |
| debian/jbigkit | deb | debian | unstable | >=2.1-6.1 | Not yet available |
Severity and metrics
No CVSS data available from this source.
2.8
2.8
1.8
-
-