VDB
GCVE-110-MAGEIA-2018-409
GCVE-110-MAGEIA-2018-409
Advisory Published
Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier
allows remote attackers to crash the application via a crafted bmp file
(CVE-2016-5319).
In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function
PackBitsEncode in tif_packbits.c (CVE-2017-17942).
TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer
over-read, as demonstrated by bmp2tiff (CVE-2018-10779).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libtiff | 0 (affected), 4.0.9-1.6.mga6 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,118 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.