CRITICAL🇬🇧 English

CVE-2016-6223

CVSS 9.1v3.0pub. 2017-01-23upd. 2026-05-13

The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attackers to cause a denial of service (crash) or possibly obtain sensitive information via a negative index in a file-content buffer.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
  • Libtiff

    APP
    Libtiff
    ≤ 4.0.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2016-9536CRITICAL9.8ten sam produkt

tools/tiff2pdf.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers in t2p_pro...

CVE-2016-9534CRITICAL9.8ten sam produkt

tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didn't reset the tif...

CVE-2016-9533CRITICAL9.8ten sam produkt

tif_pixarlog.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers. Reported as...

CVE-2016-9535CRITICAL9.8ten sam produkt

tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug ...

CVE-2016-9537CRITICAL9.8ten sam produkt

tools/tiffcrop.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in buffers. Reported as MSVR 35093, ...

CVE-2016-6223 — CRITICAL 9.1 | CVEbaza.pl