VDB
ALPINE-CVE-2018-18557
ALPINE-CVE-2018-18557
PUBLISHED
CVSS 8.800000190734863 HIGH
LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 (with JBIG enabled) decodes arbitrarily-sized JBIG into a buffer, ignoring the buffer size, which leads to a tif_jbig.c JBIGDecode out-of-bounds write.
Risk Scores
CVSS v3.0
8.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.8 | tiff | 0, 3.8.2-r0, 3.8.2-r1 |
| Alpine:v3.17 | tiff | 4.0.7-r2, 4.0.7-r3, 4.0.8-r0 |
| Alpine:v3.20 | tiff | 4.0.9-r7, 3.8.2-r0, 3.8.2-r1 |
| Alpine:v3.14 | tiff | 0, 4.0.9-r7, 4.0.9-r6 |
| Alpine:v3.19 | tiff | 4.0.9-r8, 4.0.9-r7, 4.0.9-r6 |
| Alpine:v3.11 | tiff | 4.0.9-r8, 4.0.9-r7, 4.0.9-r6 |
| Alpine:v3.18 | tiff | 4.0.9-r1, 4.0.9-r8, 4.0.9-r7 |
| Alpine:v3.22 | tiff | 4.0.6-r3, 4.0.9-r7, 4.0.9-r6 |
| Alpine:v3.6 | tiff | 4.0.6-r3, 0, 3.8.2-r0 |
| Alpine:v3.13 | tiff | 4.0.7-r1, 4.0.7-r0, 4.0.6-r3 |
| Alpine:v3.9 | tiff | 0, 4.0.9-r8, 4.0.9-r7 |
| Alpine:v3.7 | tiff | 4.0.9-r1, 4.0.6-r0, 4.0.6-r1 |
| Alpine:v3.15 | tiff | 4.0.9-r8, 0, 3.8.2-r0 |
| Alpine:v3.23 | tiff | 4.0.2-r1, 4.0.9-r8, 4.0.9-r7 |
| Alpine:v3.21 | tiff | 0, 3.8.2-r0, 3.8.2-r1 |
| Alpine:v3.16 | tiff | 4.0.2-r1, 4.0.9-r5, 4.0.9-r6 |
| Alpine:v3.10 | tiff | 0, 4.0.9-r8, 4.0.9-r7 |
| Alpine:v3.12 | tiff | 0, 3.8.2-r0, 3.8.2-r1 |
Timeline
- Oct 22, 2018 CVE Published
- Dec 3, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch