CVE-2016-5321Improper Restriction of Operations within the Bounds of a Memory Buffer in Tiff

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds Read13 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 59.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Debian TiffLibtiffOpensuse
Timeline
PublishedJan 20
Latest updateMay 14

Description

The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service (invalid read and crash) via a crafted tiff image.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

NVDlibtiff/libtiff4.0.6
debiandebian/tiff< tiff 4.0.6-2 (bookworm)

🔴Vulnerability Details

2
GHSA
GHSA-62x8-f8x8-2qfh: The DumpModeDecode function in libtiff 42022-05-14
OSV
CVE-2016-5321: The DumpModeDecode function in libtiff 42017-01-20

📋Vendor Advisories

5
Ubuntu
LibTIFF vulnerabilities2017-07-19
Ubuntu
LibTIFF vulnerabilities2017-02-27
Red Hat
libtiff: tiffcrop readSeparateTilesIntoBuffer() memory corruption2016-06-15
Debian
CVE-2016-5321: tiff - The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cau...2016
Red Hat
kernel: v4l: videobuf: hotfix a bug on multiple calls to mmap()2010-07-29

💬Community

5
Bugzilla
CVE-2016-5314 CVE-2016-5315 CVE-2016-5316 CVE-2016-5317 CVE-2016-5320 CVE-2016-5321 CVE-2016-5322 CVE-2016-5323 libtiff: various flaws [fedora-all]2016-06-15
Bugzilla
CVE-2016-5314 CVE-2016-5315 CVE-2016-5316 CVE-2016-5317 CVE-2016-5320 CVE-2016-5321 CVE-2016-5322 CVE-2016-5323 mingw-libtiff: various flaws [fedora-all]2016-06-15
Bugzilla
CVE-2016-5314 CVE-2016-5315 CVE-2016-5316 CVE-2016-5317 CVE-2016-5320 CVE-2016-5321 CVE-2016-5322 CVE-2016-5323 mingw-libtiff: various flaws [epel-7]2016-06-15
Bugzilla
CVE-2016-5321 libtiff: tiffcrop readSeparateTilesIntoBuffer() memory corruption2016-06-15
Bugzilla
CVE-2015-5321 jenkins: Information disclosure via sidepanel (SECURITY-192)2015-11-16