LibTIFF 'tif_dirinfo.c' Out of Bounds Read Denial of Service Vulnerability

Bugtraq ID: 93335
Class: Boundary Condition Error
CVE: CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
CVE-2016-3634
Remote: Yes
Local: No
Published: Apr 08 2016 12:00AM
Updated: Oct 10 2016 05:01AM
Credit: Kaixiang Zhang of the Cloud Security Team, Qihoo 360.
Vulnerable: LibTIFF LibTIFF 4.0.3
LibTIFF LibTIFF 4.0.2
LibTIFF LibTIFF 3.9.4
LibTIFF LibTIFF 3.9.3
LibTIFF LibTIFF 3.9.2
LibTIFF LibTIFF 3.8.2
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.8.1
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.8
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.7.4
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.7.3
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.7.2
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
LibTIFF LibTIFF 3.7.1
LibTIFF LibTIFF 3.7
+ Slackware Linux 10.0
+ Slackware Linux -current
LibTIFF LibTIFF 3.6.1
+ Gentoo Linux 1.4
+ Gentoo Linux
+ OpenPKG OpenPKG Current
+ Turbolinux Turbolinux Server 10.0
+ Ubuntu Ubuntu Linux 5.0 4 powerpc
+ Ubuntu Ubuntu Linux 5.0 4 i386
+ Ubuntu Ubuntu Linux 5.0 4 amd64
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
LibTIFF LibTIFF 3.6
LibTIFF LibTIFF 3.5.7
+ Redhat Fedora Core2
+ Slackware Linux 9.1
+ Slackware Linux 9.0
+ Slackware Linux 8.1
+ Turbolinux Appliance Server Hosting Edition 1.0
+ Turbolinux Appliance Server Workgroup Edition 1.0
+ Turbolinux Turbolinux Desktop 10.0
+ Turbolinux Turbolinux Server 8.0
LibTIFF LibTIFF 3.5.6
LibTIFF LibTIFF 3.5.5
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
+ Debian Linux 3.0
+ Turbolinux Turbolinux Server 7.0
+ Turbolinux Turbolinux Workstation 8.0
+ Turbolinux Turbolinux Workstation 7.0
LibTIFF LibTIFF 3.5.4
LibTIFF LibTIFF 3.5.3
LibTIFF LibTIFF 3.5.2
LibTIFF LibTIFF 3.5.1
LibTIFF LibTIFF 3.4
LibTIFF LibTIFF 4.0.6
LibTIFF LibTIFF 4.0.5
LibTIFF LibTIFF 4.0.4
LibTIFF LibTIFF 4.0.1
LibTIFF LibTIFF 4.0
LibTIFF LibTIFF 3.9.5
LibTIFF LibTIFF 3.9.1
LibTIFF LibTIFF 3.9
LibTIFF LibTIFF 3.7.2-7
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus