CVE-2012-1173 — Heap-based Buffer Overflow in Tiff

CWE-189 CWE-122 — Heap-based Buffer Overflow11 documents7 sources

Severity

6.8MEDIUMNVD

EPSS

6.8%

top 8.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Tiff Libtiff

Timeline

PublishedJun 4

Latest updateMay 14

Description

Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

▶NVDlibtiff/libtiff3.9.4

▶debiandebian/tiff< tiff 4.0.1-2 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-vrfr-r2jm-7vm2: Multiple integer overflows in tiff_getimage↗2022-05-14

▶

OSV

CVE-2012-1173: Multiple integer overflows in tiff_getimage↗2012-06-04

▶

📋Vendor Advisories

Ubuntu

tiff vulnerabilities↗2012-04-04

▶

Red Hat

libtiff: Heap-buffer overflow due to TileSize calculation when parsing tiff files↗2012-04-04

▶

Debian

CVE-2012-1173: tiff - Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote atta...↗2012

▶

💬Community

Bugzilla

CVE-2012-4168 flash-plugin: cross-domain information leak flaw (APSB12-19)↗2012-08-21

▶

Bugzilla

CVE-2012-4163 CVE-2012-4164 CVE-2012-4165 CVE-2012-4166 CVE-2012-4167 flash-plugin: multiple code execution flaws (APSB12-19)↗2012-08-21

▶

Bugzilla

CVE-2012-2113 libtiff: integer overflow in tiff2pdf leading to heap-buffer overflow when reading a tiled tiff file↗2012-04-06

▶

Bugzilla

CVE-2012-1173 libtiff: Heap-buffer overflow due to TileSize calculation when parsing tiff files [fedora-all]↗2012-04-05

▶

Bugzilla

CVE-2012-1173 libtiff: Heap-buffer overflow due to TileSize calculation when parsing tiff files↗2012-03-13

▶