CVE-2014-9330
published 2015-01-20CVE-2014-9330: Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to…
PriorityP423medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
4.13%
89.6th percentile
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 4.0.3-12 (bookworm) | tiff 4.0.3-12 (bookworm) |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv6.5MEDIUM
vendor_ubuntu6.5MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
LibTIFF regression
vendor_ubuntu·2015-04-01·CVSS 6.5
[MEDIUM] LibTIFF regression
Title: LibTIFF regression
Summary: USN-2553-1 introduced a regression in LibTIFF.
USN-2553-1 fixed vulnerabilities in LibTIFF. One of the security fixes
caused a regression when saving certain TIFF files with a Predictor tag.
The problematic patch has been temporarily backed out until a more complete
fix is available.
We apologize for the inconvenience.
Original advisory details:
William Robinet discovered that LibTIFF incorrectly handled certain
malformed images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129,
CVE-2014-8130)
Paris Zoumpouloglou discovered that LibTIFF i
Ubuntu
LibTIFF vulnerabilities
vendor_ubuntu·2015-03-31·CVSS 6.5
CVE-2014-8127 [MEDIUM] LibTIFF vulnerabilities
Title: LibTIFF vulnerabilities
Summary: LibTIFF could be made to crash or run programs as your login if it opened a
specially crafted file.
William Robinet discovered that LibTIFF incorrectly handled certain
malformed images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129,
CVE-2014-8130)
Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain
malformed BMP images. If a user or automated system were tricked into
opening a specially crafted BMP image, a remote attacker could crash the
application, leading to a denial of service. (CVE-2014-9330)
Michal Zalewsk
Red Hat
libtiff: Out-of-bounds reads followed by a crash in bmp2tiff
vendor_redhat·2014-12-22·CVSS 5.0
CVE-2014-9330 [MEDIUM] CWE-125 libtiff: Out-of-bounds reads followed by a crash in bmp2tiff
libtiff: Out-of-bounds reads followed by a crash in bmp2tiff
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
A flaw was discovered in the bmp2tiff utility. By tricking a user into processing a specially crafted file, a remote attacker could exploit this flaw to cause a crash or memory corruption and, possibly, execute arbitrary code with the privileges of the user running the libtiff tool.
Statement: Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw in libtiff.
Package: libtiff (Red Hat Enterprise Linux 5) - Will not fix
Debian
CVE-2014-9330: tiff - Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote att...
vendor_debian·2014·CVSS 5.0
CVE-2014-9330 [MEDIUM] CVE-2014-9330: tiff - Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote att...
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
Scope: local
bookworm: resolved (fixed in 4.0.3-12)
bullseye: resolved (fixed in 4.0.3-12)
forky: resolved (fixed in 4.0.3-12)
sid: resolved (fixed in 4.0.3-12)
trixie: resolved (fixed in 4.0.3-12)
GHSA
GHSA-69w2-3hr8-2mv2: Integer overflow in tif_packbits
ghsa_unreviewed·2022-05-14
CVE-2014-9330 [MEDIUM] GHSA-69w2-3hr8-2mv2: Integer overflow in tif_packbits
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
OSV
tiff regression
osv·2015-04-01·CVSS 6.5
[MEDIUM] tiff regression
tiff regression
USN-2553-1 fixed vulnerabilities in LibTIFF. One of the security fixes
caused a regression when saving certain TIFF files with a Predictor tag.
The problematic patch has been temporarily backed out until a more complete
fix is available.
We apologize for the inconvenience.
Original advisory details:
William Robinet discovered that LibTIFF incorrectly handled certain
malformed images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129,
CVE-2014-8130)
Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain
malformed BMP images. If a user or autom
OSV
tiff vulnerabilities
osv·2015-03-31·CVSS 6.5
CVE-2014-8127 [MEDIUM] tiff vulnerabilities
tiff vulnerabilities
William Robinet discovered that LibTIFF incorrectly handled certain
malformed images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129,
CVE-2014-8130)
Paris Zoumpouloglou discovered that LibTIFF incorrectly handled certain
malformed BMP images. If a user or automated system were tricked into
opening a specially crafted BMP image, a remote attacker could crash the
application, leading to a denial of service. (CVE-2014-9330)
Michal Zalewski discovered that LibTIFF incorrectly handled certain
malformed images. If a user or automated system were tricked into
OSV
CVE-2014-9330: Integer overflow in tif_packbits
osv·2015-01-20·CVSS 5.0
CVE-2014-9330 [MEDIUM] CVE-2014-9330: Integer overflow in tif_packbits
Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
No detection rules found.
No public exploits indexed.
http://bugzilla.maptools.org/show_bug.cgi?id=2494http://rhn.redhat.com/errata/RHSA-2016-1546.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1547.htmlhttp://seclists.org/fulldisclosure/2014/Dec/97http://www.debian.org/security/2015/dsa-3273http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/71789http://www.securitytracker.com/id/1031442https://security.gentoo.org/glsa/201701-16http://bugzilla.maptools.org/show_bug.cgi?id=2494http://rhn.redhat.com/errata/RHSA-2016-1546.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1547.htmlhttp://seclists.org/fulldisclosure/2014/Dec/97http://www.debian.org/security/2015/dsa-3273http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/71789http://www.securitytracker.com/id/1031442https://security.gentoo.org/glsa/201701-16
2015-01-20
Published