CVE-2017-18013

描述

In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.

受影響套件(4)

• Alpine/tifffrom 0, < 4.0.9-r1
• Debian/tifffrom 0, < 4.0.9-3
• Debian/tifffrom 0, < 4.0.2-6+deb7u18
• Debian/tiff3from 0, < 3.9.6-11+deb7u9

CVSS 分數

參考連結(2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2017-18013
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-18013