CVE-2013-1961Improper Restriction of Operations within the Bounds of a Memory Buffer in Tiff

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-121Stack-based Buffer Overflow10 documents7 sources
Severity
9.3CRITICALNVD
EPSS
1.9%
top 16.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian TiffRemotesensing Libtiff
Timeline
PublishedJul 3
Latest updateMay 17

Description

Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDremotesensing/libtiff4.0.3+26
debiandebian/tiff< tiff 4.0.2-6+nmu1 (bookworm)

🔴Vulnerability Details

2
GHSA
GHSA-7q9j-26p4-98cm: Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 42022-05-17
OSV
CVE-2013-1961: Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 42013-07-03

📋Vendor Advisories

3
Ubuntu
LibTIFF vulnerabilities2013-05-21
Red Hat
(tiff2pdf): Stack-based buffer overflow with malformed image-length and resolution2013-05-02
Debian
CVE-2013-1961: tiff - Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in li...2013

💬Community

4
Bugzilla
CVE-2013-4231 libtiff (gif2tiff): GIF LZW decoder missing datasize value check2013-08-12
Bugzilla
CVE-2013-1961 CVE-2013-1960 mingw-libtiff various flaws [fedora-all]2013-05-02
Bugzilla
CVE-2013-1961 CVE-2013-1960 libtiff various flaws [fedora-all]2013-05-02
Bugzilla
CVE-2013-1961 libtiff (tiff2pdf): Stack-based buffer overflow with malformed image-length and resolution2013-04-15