CRITICAL🇬🇧 English

CVE-2016-9535

CVSS 9.8v3.0pub. 2016-11-22upd. 2026-05-29

tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Libtiff

    APP
    Libtiff
    4.0.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2016-6223CRITICAL9.1ten sam produkt

The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attac...

CVE-2016-9533CRITICAL9.8ten sam produkt

tif_pixarlog.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers. Reported as...

CVE-2016-9536CRITICAL9.8ten sam produkt

tools/tiff2pdf.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers in t2p_pro...

CVE-2016-9534CRITICAL9.8ten sam produkt

tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didn't reset the tif...

CVE-2016-9537CRITICAL9.8ten sam produkt

tools/tiffcrop.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in buffers. Reported as MSVR 35093, ...

CVE-2016-9535 — CRITICAL 9.8 | CVEbaza.pl