VDB

GCVE-110-MAGEIA-2018-409

GCVE-110-MAGEIA-2018-409
Advisory Published
Vulnetix · Advisory published October 20, 2018
Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file (CVE-2016-5319). In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c (CVE-2017-17942). TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff (CVE-2018-10779).

Affected Products

VendorProductVersionsPlatforms
Mageialibtiff0 (affected), 4.0.9-1.6.mga6 (unaffected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›