CVE-2014-8128: LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service…

[MEDIUM] LibTIFF regression Title: LibTIFF regression Summary: USN-2553-1 introduced a regression in LibTIFF. USN-2553-1 fixed vulnerabilities in LibTIFF. One of the security fixes caused a regression when saving certain TIFF files with a Predictor tag. The problematic patch has been temporarily backed out until a more complete fix is available. We apologize for the inconvenience. Original advisory details: William Robinet discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129, CVE-2014-8130) Paris Zoumpouloglou discovered that LibTIFF i

CVE-2014-8127 [MEDIUM] LibTIFF vulnerabilities Title: LibTIFF vulnerabilities Summary: LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file. William Robinet discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129, CVE-2014-8130) Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain malformed BMP images. If a user or automated system were tricked into opening a specially crafted BMP image, a remote attacker could crash the application, leading to a denial of service. (CVE-2014-9330) Michal Zalewsk

CVE-2014-8128 [MEDIUM] CWE-787 libtiff: out-of-bounds write in multiple tools libtiff: out-of-bounds write in multiple tools LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image. Statement: Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/. Package: libtiff (Red Hat Enterprise Linux 5) - Will not fix Package: libtiff (Red Hat Enterprise Linux 6) - Will not fix Package: libtiff (Red Hat Enterprise Linux 7) - Will not fix

CVE-2014-8128 [MEDIUM] CVE-2014-8128: tiff - LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 ... LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image. Scope: local bookworm: resolved (fixed in 4.0.3-12.3) bullseye: resolved (fixed in 4.0.3-12.3) forky: resolved (fixed in 4.0.3-12.3) sid: resolved (fixed in 4.0.3-12.3) trixie: resolved (fixed in 4.0.3-12.3)

CVE-2014-8128 [MEDIUM] CVE-2014-8128: iOS 8.4 Apple Security Update: About the security content of iOS 8.4 Product: iOS Version: 8.4 CVE: CVE-2014-8128 Component: CVE-2014-8128

CVE-2014-8128 [MEDIUM] CVE-2014-8128: OS X Yosemite v10.10.4 and Security Update 2015-005 Apple Security Update: About the security content of OS X Yosemite v10.10.4 and Security Update 2015-005 Product: OS X Yosemite v10.10.4 and Security Update 2015-005 CVE: CVE-2014-8128 Component: CVE-2014-8128

CVE-2014-8128 [MEDIUM] GHSA-c668-q57x-6hjh: LibTIFF prior to 4 LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.

CVE-2014-8128 [MEDIUM] CVE-2014-8128: LibTIFF prior to 4 LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.

[MEDIUM] tiff regression tiff regression USN-2553-1 fixed vulnerabilities in LibTIFF. One of the security fixes caused a regression when saving certain TIFF files with a Predictor tag. The problematic patch has been temporarily backed out until a more complete fix is available. We apologize for the inconvenience. Original advisory details: William Robinet discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129, CVE-2014-8130) Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain malformed BMP images. If a user or autom

CVE-2014-8127 [MEDIUM] tiff vulnerabilities tiff vulnerabilities William Robinet discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129, CVE-2014-8130) Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain malformed BMP images. If a user or automated system were tricked into opening a specially crafted BMP image, a remote attacker could crash the application, leading to a denial of service. (CVE-2014-9330) Michal Zalewski discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into

CVE-2014-8128 [MEDIUM] CVE-2014-8128 libtiff: out-of-bounds write in multiple tools CVE-2014-8128 libtiff: out-of-bounds write in multiple tools Multiple out-of-bounds writes were reported in various libtiff tools: - CVE-2014-8128 libtiff: Out-of-bounds Write in the thumbnail tool http://bugzilla.maptools.org/show_bug.cgi?id=2489 - CVE-2014-8128 libtiff: Out-of-bounds Write in the tiffdither tool http://bugzilla.maptools.org/show_bug.cgi?id=2490 - CVE-2014-8128 libtiff: Out-of-bounds Write in the tiffdither tool http://bugzilla.maptools.org/show_bug.cgi?id=2491 - CVE-2014-8128 libtiff: Out-of-bounds Write in the tiffdither tool http://bugzilla.maptools.org/show_bug.cgi?id=2492 - CVE-2014-8128 libtiff: Out-of-bounds Write in the thumbnail and tiffcmp tools http://bugzilla.maptools.org/show_bug.cgi?id=2493 - CVE-2014-8128 libtiff: Out-of-bounds Write in the tiff2pdf tool

CVE-2014-8130 [MEDIUM] CVE-2014-8130 libtiff: divide by zero in the tiffdither tool CVE-2014-8130 libtiff: divide by zero in the tiffdither tool Divide by zero was reported in the libtiff tiffdither tool: - CVE-2014-8130 libtiff: Divide By Zero in the tiffdither tool http://bugzilla.maptools.org/show_bug.cgi?id=2483 The above upstream bug was fixed by one of the commits that fix CVE-2014-8127 / CVE-2014-8128 / CVE-2014-8129 Discussion: Patch https://github.com/vadz/libtiff/commit/3c5eb8b1be544e41d2c336191bc4936300ad7543 libtiff/tif_unix.c @@ -257,6 +257,9 @@ TIFFOpenW(const wchar_t* name, const char* mode) void* _TIFFmalloc(tmsize_t s) { + if (s == 0) + return ((void *) NULL); + return (malloc((size_t) s)); } above patch seems to suppresses this flaw --- Statement: Red Hat Product Security has rated this issue as having low security impact, a future update may