Mageia 9 MGASA-2024-0287 Moderate: LibTiff Memory Risk Denial of Service

mageia

September 10, 2024

A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`

Summary

A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service. (CVE-2024-7006)

References

- https://bugs.mageia.org/show_bug.cgi?id=33538

- https://lists.suse.com/pipermail/sle-updates/2024-September/036754.html

- https://www.cve.org/CVERecord?id=CVE-2024-7006

Topics Covered

security advisory moderate denial of service libtiff memory allocation mageia

Resolution

SRPMS

- 9/core/libtiff-4.5.1-1.5.mga9

Publication date: 10 Sep 2024

URL: https://advisories.mageia.org/MGASA-2024-0287.html

Type: security

CVE: CVE-2024-7006

Topics Covered

security advisory moderate denial of service libtiff memory allocation mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9 MGASA-2024-0287 Moderate: LibTiff Memory Risk Denial of Service

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9 MGASA-2024-0287 Moderate: LibTiff Memory Risk Denial of Service

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!