CVE-2018-19210 - In LibTIFF 4.0.9, there is a NULL pointer dereference in the TIFFWriteDirectorySec function in tif_d

CVE-2018-19210

Summary

In LibTIFF 4.0.9, there is a NULL pointer dereference in the TIFFWriteDirectorySec function in tif_dirwrite.c that will lead to a denial of service attack, as demonstrated by tiffset.

References

Vulnerable Configurations

cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 05-04-2019 - 21:29)
Impact:
Exploitability:

CWE

CWE-476

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

refmap via4

bid	105932
bugtraq	20191104 [slackware-security] libtiff (SSA:2019-308-01)
debian	DSA-4670
fedora	FEDORA-2019-70d89f8806 FEDORA-2019-fa3e40f00a
gentoo	GLSA-202003-25
misc	http://bugzilla.maptools.org/show_bug.cgi?id=2820 http://packetstormsecurity.com/files/155095/Slackware-Security-Advisory-libtiff-Updates.html
mlist	[debian-lts-announce] 20190218 [SECURITY] [DLA 1680-1] tiff security update
suse	openSUSE-SU-2019:1161
ubuntu	USN-3906-1

Last major update

05-04-2019 - 21:29

Published

12-11-2018 - 19:29

Last modified

05-04-2019 - 21:29