4 matches found
MiracleLinux 7 : libtiff-4.0.3-35.0.3.el7.AXS7 (AXSA:2025-10907:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10907:02 advisory. CVE-2017-9117: add checks for all BMP reading operations to avoid buffer overflow CVEs: CVE-2017-9117 In LibTIFF 4.0.6 and possibly other versions, the...
Linux Distros Unpatched Vulnerability : CVE-2017-9117
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.6 and possibly other versions, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header matc...
SUSE: Security Advisory (SUSE-SU-2018:3879-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-9117
CVE-2017-9117 affects LibTIFF (notably 4.0.6 and possibly other versions). The issue is a heap-based buffer over-read when processing BMP images because biWidth/biHeight in the bitmap-information header are not verified against the actual input, as demonstrated in bmp2tiff. The BMP handling path ...