CVE-2017-7592

Source
Severity Medium
Remote Yes
Type Denial of service
Description
A security issue has been found in libtiff <= 4.0.7, where a crafted TIFF file can trigger an undefined behavior in putagreytile().
Group Package Affected Fixed Severity Status Ticket
AVG-817 lib32-libtiff 4.0.7-2 4.0.7-3 Medium Fixed
AVG-237 libtiff 4.0.7-2 4.0.7-3 Medium Fixed
Date Advisory Group Package Severity Description
28 Apr 2017 ASA-201704-10 AVG-237 libtiff Medium multiple issues
References
http://seclists.org/oss-sec/2017/q2/35
http://bugzilla.maptools.org/show_bug.cgi?id=2658
https://github.com/vadz/libtiff/commit/48780b4fcc425cddc4ef8ffdf536f96a0d1b313b