---

CVE-2015-8668 - log back

CVE-2015-8668 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Local
Type	+ Arbitrary code execution
Description	+ Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
References	+ http://seclists.org/bugtraq/2015/Dec/138 + http://bugzilla.maptools.org/show_bug.cgi?id=2563#c4
Notes	+ bmp2tiff tool removed upstream in 4.0.7