CVE-2008-2327Improper Restriction of Operations within the Bounds of a Memory Buffer in Tiff

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer14 documents8 sources
Severity
6.8MEDIUMNVD
NVD4.3
EPSS
1.5%
top 18.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Debian TiffLibtiffVmware Esxi+1 more
Timeline
PublishedAug 27
Latest updateMay 2

Description

Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

NVDlibtiff/libtiff3.8.2+15
debiandebian/tiff< tiff 3.8.2-12 (bookworm)+1
vmwarevmware/esxi

Patches

Patch: www.debian.orgPatch: www.debian.org

🔴Vulnerability Details

4
GHSA
GHSA-ggpg-hpjr-gqrh: Buffer underflow in the LZWDecodeCompat function in libtiff 32022-05-02
GHSA
GHSA-948h-p4jx-fxj7: Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw2022-05-01
OSV
CVE-2009-2285: Buffer underflow in the LZWDecodeCompat function in libtiff 32009-07-01
OSV
CVE-2008-2327: Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw2008-08-27

📋Vendor Advisories

6
Red Hat
libtiff: LZWDecodeCompat underflow2009-01-03
Debian
CVE-2009-2285: tiff - Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context...2009
VMware
Updated ESX packages for libxml2, ucd-snmp, libtiff2008-10-31
Ubuntu
tiff vulnerability2008-09-02
Red Hat
libtiff: use of uninitialized memory in LZW decoder2008-08-26

💬Community

2
Bugzilla
CVE-2009-2285 libtiff: LZWDecodeCompat underflow2009-06-22
Bugzilla
CVE-2008-2327 libtiff: use of uninitialized memory in LZW decoder2008-08-11