FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9b5a905f-e556-452f-a00c-8f070a086181libtiff -- Improper Input Validation

libtiff developers report:

There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.

There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.


Discovery 2017-08-29
Entry 2017-10-10
libtiff
le 4.0.8

http://bugzilla.maptools.org/show_bug.cgi?id=2727
http://bugzilla.maptools.org/show_bug.cgi?id=2728
http://www.securityfocus.com/bid/100524
CVE-2017-13726
CVE-2017-13727