27 matches found
CVE-2016-5317
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...
LibTIFF PixarLogDecode Remote Code Execution Vulnerability
Summary An exploitable heap based buffer overflow exists in the handling of compressed TIFF images in LibTIFF’s PixarLogDecode api. A crafted TIFF document can lead to a heap based buffer overflow resulting in remote code execution. The vulnerability can be triggered through any user controlled...
libtiff: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c
REJECTED CVE This CVE has been rejected. This candidate is a duplicate of CVE-2016-5314. Note: All CVE users should reference CVE-2016-5314 instead of this candidate...
tiff -- buffer overflow
Mathias Svensson reports: potential buffer write overrun in PixarLogDecode on corrupted/unexpected images...
Nautilus 'PixarLogDecode' Function Denial of Service Vulnerability
Nautilus is a file manager for the GNOME desktop environment. A security vulnerability in the 'PixarLogDecode' function in the libtiff.so file of Nautilus allows remote attackers to construct special TIFF images that can be tricked into being parsed by the application, which can crash the...
UBUNTU-CVE-2016-5314
Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...
CVE-2016-5314
Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...