CVE-2020-6151
The TALOS and CVE sources confirm a memory corruption vulnerability in Accusoft ImageGear 19.7 caused by the TIFF handle_COMPRESSION_PACKBITS function. A defective test on param_2 (size/destination) combined with an unsigned cast leads to an integer overflow and an out-of-bounds write, which can ...