CVE-2017-7593

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
A security issue has been found in libtiff < 4.0.7, where a crafted tiff image can cause a unitialized-memory access in tif_rawdata(), leading to information leakage.
Group Package Affected Fixed Severity Status Ticket
AVG-817 lib32-libtiff 4.0.7-2 4.0.7-3 Medium Fixed
AVG-237 libtiff 4.0.7-2 4.0.7-3 Medium Fixed
Date Advisory Group Package Severity Description
28 Apr 2017 ASA-201704-10 AVG-237 libtiff Medium multiple issues
References
http://seclists.org/oss-sec/2017/q2/36
http://bugzilla.maptools.org/show_bug.cgi?id=2651
https://github.com/vadz/libtiff/commit/d60332057b9575ada4f264489582b13e30137be1