The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

computer vulnerability alert CVE-2016-3623 CVE-2016-3624 CVE-2016-3625

LibTIFF: nine vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of LibTIFF.
Vulnerable products: Debian, BIG-IP Hardware, TMOS, LibTIFF, openSUSE, openSUSE Leap, RHEL, Slackware, SUSE Linux Enterprise Desktop, SLES, Ubuntu.
Severity of this weakness: 3/4.
Consequences of a hack: user access/rights, denial of service on client.
Hacker's origin: document.
Number of vulnerabilities in this bulletin: 9.
Creation date: 08/04/2016.
Revision date: 22/04/2016.
Références of this bulletin: CVE-2016-3623, CVE-2016-3624, CVE-2016-3625, CVE-2016-3631, CVE-2016-3632, CVE-2016-3633, CVE-2016-3634, CVE-2016-3658, CVE-2016-3945, DLA-610-1, DLA-610-2, DLA-693-1, DLA-693-2, DLA-795-1, DLA-969-1, DSA-3762-1, DSA-3844-1, K24923910, openSUSE-SU-2016:2275-1, openSUSE-SU-2016:2375-1, openSUSE-SU-2016:2525-1, openSUSE-SU-2016:3035-1, openSUSE-SU-2017:0074-1, openSUSE-SU-2018:1834-1, RHSA-2016:1546-01, RHSA-2016:1547-01, SOL24923910, SSA:2017-098-01, SUSE-SU-2018:1826-1, SUSE-SU-2018:1835-1, USN-3212-1, USN-3212-2, USN-3212-3, USN-3212-4, VIGILANCE-VUL-19326.

Description of the vulnerability

Several vulnerabilities were announced in LibTIFF.

An attacker can trigger a fatal error in rgb2ycbcr, in order to trigger a denial of service. [severity:2/4; CVE-2016-3623]

An attacker can generate a memory corruption in rgb2ycbcr, in order to trigger a denial of service, and possibly to run code. [severity:3/4; CVE-2016-3624]

An attacker can force a read at an invalid address in tiff2bw, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2016-3625]

An attacker can force a read at an invalid address in thumbnail, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2016-3631]

An attacker can generate a memory corruption in _TIFFVGetField(), in order to trigger a denial of service, and possibly to run code. [severity:3/4; CVE-2016-3632]

An attacker can generate a buffer overflow in tiff2rgba, in order to trigger a denial of service, and possibly to run code. [severity:3/4; CVE-2016-3945]

An attacker can force a read at an invalid address in setrow, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2016-3633]

An attacker can force a read at an invalid address in TIFFWriteDirectoryTagLongLong8Array, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2016-3658]

An attacker can force a read at an invalid address in tagCompare, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2016-3634]
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a system vulnerability database. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.