Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If we set the value of td_imagelength close to the amount of system memory, it will hang the system or trigger the OOM killer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Silicon Graphics LibTIFF 安全漏洞
Vulnerability Description
Silicon Graphics LibTIFF是美国Silicon Graphics公司的一个读写TIFF(标签图像文件格式)文件的库。该库包含一些处理TIFF文件的命令行工具。 Silicon Graphics LibTIFF 4.0.8版本中的‘TIFFOpen’函数存在拒绝服务漏洞。攻击者可借助特制的输入利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A