CVE-2012-4447
published 2012-10-28CVE-2012-4447: Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly…
PriorityP434medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
6.73%
93.1th percentile
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 4.0.2-4 (bookworm) | tiff 4.0.2-4 (bookworm) |
| libtiff | libtiff | <= 4.0.2 | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
vendor_ubuntu6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
LibTIFF vulnerabilities
vendor_ubuntu·2012-11-15·CVSS 6.8
CVE-2012-4447 [MEDIUM] LibTIFF vulnerabilities
Title: LibTIFF vulnerabilities
Summary: LibTIFF could be made to crash or run programs as your login if it opened a
specially crafted file.
It was discovered that LibTIFF incorrectly handled certain malformed images
using the PixarLog compression format. If a user or automated system were
tricked into opening a specially crafted TIFF image, a remote attacker
could crash the application, leading to a denial of service, or possibly
execute arbitrary code with user privileges. (CVE-2012-4447)
Huzaifa S. Sidhpurwala discovered that the ppm2tiff tool incorrectly
handled certain malformed PPM images. If a user or automated system were
tricked into opening a specially crafted PPM image, a remote attacker could
crash the application, leading to a denial of service, or possibly execute
arbitrary
Red Hat
libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
vendor_redhat·2012-09-22·CVSS 6.8
CVE-2012-4447 [MEDIUM] CWE-122 libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Debian
CVE-2012-4447: tiff - Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remo...
vendor_debian·2012·CVSS 6.8
CVE-2012-4447 [MEDIUM] CVE-2012-4447: tiff - Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remo...
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Scope: local
bookworm: resolved (fixed in 4.0.2-4)
bullseye: resolved (fixed in 4.0.2-4)
forky: resolved (fixed in 4.0.2-4)
sid: resolved (fixed in 4.0.2-4)
trixie: resolved (fixed in 4.0.2-4)
GHSA
GHSA-g87v-m6xq-4j4j: Heap-based buffer overflow in tif_pixarlog
ghsa_unreviewed·2022-05-17
CVE-2012-4447 [MEDIUM] CWE-119 GHSA-g87v-m6xq-4j4j: Heap-based buffer overflow in tif_pixarlog
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
OSV
CVE-2012-4447: Heap-based buffer overflow in tif_pixarlog
osv·2012-10-28·CVSS 6.8
CVE-2012-4447 [MEDIUM] CVE-2012-4447: Heap-based buffer overflow in tif_pixarlog
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-4447 CVE-2012-5581 mingw-libtiff various flaws [fedora-all]
bugzilla·2012-12-21·CVSS 6.8
CVE-2012-4447 [MEDIUM] CVE-2012-4447 CVE-2012-5581 mingw-libtiff various flaws [fedora-all]
CVE-2012-4447 CVE-2012-5581 mingw-libtiff various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affects mult
Bugzilla
CVE-2012-4447 CVE-2012-3401 CVE-2012-5581 CVE-2012-4564 libtiff various flaws [fedora-all]
bugzilla·2012-11-28·CVSS 6.8
CVE-2012-4447 [MEDIUM] CVE-2012-4447 CVE-2012-3401 CVE-2012-5581 CVE-2012-4564 libtiff various flaws [fedora-all]
CVE-2012-4447 CVE-2012-3401 CVE-2012-5581 CVE-2012-4564 libtiff various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: t
Bugzilla
CVE-2012-4447 libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
bugzilla·2012-09-25·CVSS 6.8
CVE-2012-4447 [MEDIUM] CVE-2012-4447 libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
CVE-2012-4447 libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression
A heap-based buffer overflow was found in the way libtiff, library for manipulating TIFF (Tagged Image File Format) image format files, processed certain TIFF images using PixarLog Compression format. An attacker could create a specially-crafted TIFF image that, when opened, could cause an application using libtiff to crash or, possibly, execute arbitrary code with the privileges of the user running the application.
Discussion:
This issue was partly fixed in the libtiff-4.0.2 release via the following commit:
revision 1.37
date: 2012-05-24 23:21:45 +0000; author: fwarmerdam; state: Exp; lines: +2 -2; commitid: 5xHvb7ZoNW8P226w;
Allocate working buffer one word larger since we "forward acc
http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1590.htmlhttp://secunia.com/advisories/49938http://secunia.com/advisories/51049http://www.debian.org/security/2012/dsa-2561http://www.openwall.com/lists/oss-security/2012/09/25/14http://www.openwall.com/lists/oss-security/2012/09/25/9http://www.remotesensing.org/libtiff/v4.0.3.htmlhttp://www.securityfocus.com/bid/55673http://www.ubuntu.com/usn/USN-1631-1https://bugzilla.redhat.com/show_bug.cgi?id=860198http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1590.htmlhttp://secunia.com/advisories/49938http://secunia.com/advisories/51049http://www.debian.org/security/2012/dsa-2561http://www.openwall.com/lists/oss-security/2012/09/25/14http://www.openwall.com/lists/oss-security/2012/09/25/9http://www.remotesensing.org/libtiff/v4.0.3.htmlhttp://www.securityfocus.com/bid/55673http://www.ubuntu.com/usn/USN-1631-1https://bugzilla.redhat.com/show_bug.cgi?id=860198
2012-10-28
Published