CVE-2016-9535

Priority
Medium
Description
tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can
lead to assertion failures in debug mode, or buffer overflows in release
mode, when dealing with unusual tile size like YCbCr with subsampling.
Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."
References
Package
Source: tiff (LP Ubuntu Debian)
Upstream:released (4.0.7-1)
Ubuntu 12.04 LTS (Precise Pangolin):needed
Ubuntu 14.04 LTS (Trusty Tahr):released (4.0.3-7ubuntu0.6)
Ubuntu Touch 15.04:needed
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (4.0.6-1ubuntu0.1)
Ubuntu 16.10 (Yakkety Yak):released (4.0.6-2ubuntu0.1)
Ubuntu 17.04 (Zesty Zapus):not-affected (4.0.7-1)
Patches:
Upstream:https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1
Upstream:https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33
More Information

Updated: 2017-02-27 19:14:18 UTC (commit 12156)