Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LibTIFF 数字错误漏洞
Vulnerability Description
LibTIFF是一个读写TIFF(标签图像文件格式)文件的库。该库包含一些处理TIFF文件的命令行工具。 LibTIFF中存在数字错误漏洞,该漏洞源于在解析图片时“gtTileSeparate()”函数(ibtiff/tif_getimage.c)内的整数溢出错误。攻击者可利用该漏洞借助特制图片导致基于堆的缓冲区溢出,攻击成功可导致任意代码执行。LibTiff 3.9.4版本中存在该漏洞,其他版本也可能受到影响。
CVSS Information
N/A
Vulnerability Type
N/A