Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 544
Alerts This Week
Warning Icon 1 544

Debian Security Advisory DSA-3844-1: LibTiff Denial of Service Issue

debian
Calendar Grey May 3, 2017
Scroller Debian
Mitigating serious libtiff security flaws within Debian to avert potential code execution and memory corruption risks.
Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service, memory disclosure or the execution of arbitrary ...

Summary

Multiple vulnerabilities have been discovered in the libtiff library and
the included tools, which may result in denial of service, memory
disclosure or the execution of arbitrary code.

For the stable distribution (jessie), these problems have been fixed in
version 4.0.3-12.3+deb8u3.

For the upcoming stable distribution (stretch), these problems have been
fixed in version 4.0.7-6.

For the unstable distribution (sid), these problems have been fixed in
version 4.0.7-6.

We recommend that you upgrade your tiff packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: tiff
CVE ID: CVE-2016-3658 CVE-2016-9535 CVE-2016-10266

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.