Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2017-7595 - log back

CVE-2017-7595 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Remote

Type

+	Denial of service

Description

+	A security issue has been found in libtiff before 4.0.8, where a crafted tiff image can cause a division by zero in JPEGSetupEncode(), leading to denial of service.

References

+	https://blogs.gentoo.org/ago/2017/04/01/libtiff-divide-by-zero-in-jpegsetupencode-tiff_jpeg-c/
+	https://github.com/vadz/libtiff/commit/47f2fb61a3a64667bce1a8398a8fcb1b348ff122
+	http://seclists.org/oss-sec/2017/q2/38

Notes