CVE-2017-7595

Priority
Medium
Description
The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote
attackers to cause a denial of service (divide-by-zero error and
application crash) via a crafted image.
References
Bugs
Package
Source: tiff (LP Ubuntu Debian)
Upstream:needed
Ubuntu 17.10 (Artful Aardvark):needed
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 17.04 (Zesty Zapus):needed
Patches:
Upstream:https://github.com/vadz/libtiff/commit/47f2fb61a3a64667bce1a8398a8fcb1b348ff122
More Information

Updated: 2017-08-11 23:26:34 UTC (commit 13081)