CVE-2018-7456

Name
CVE-2018-7456
Description
A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of the TIFFPrintDirectory function that was not addressed by the CVE-2017-18013 patch.)
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Exploit https://github.com/xiaoqx/pocs/tree/master/libtiff
Exploit http://bugzilla.maptools.org/show_bug.cgi?id=2778
Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00011.html
Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00010.html
Mailing List https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html
Third Party Advisory https://www.debian.org/security/2018/dsa-4349
Third Party Advisory https://usn.ubuntu.com/3864-1/
Patch https://gitlab.com/libtiff/libtiff/commit/be4c85b16e8801a16eec25e80eb9f3dd6a96731b
REDHAT https://access.redhat.com/errata/RHSA-2019:2051
REDHAT https://access.redhat.com/errata/RHSA-2019:2053

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:* libtiff == None == 4.0.9

Vulnerable and fixed packages

Source package Branch Version Maintainer Status