Ask the Community
Groups
CVE-2016-9540 libtiff: cpStripToTile heap-buffer-overflow - Connect IT Community | Kaseya
<main> <article class="userContent"> <h3 data-id="cve-id"><strong>CVE ID</strong></h3> <p>CVE-2016-9540</p> <h3 data-id="description"><strong>DESCRIPTION</strong></h3> <p>tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled images<br>with odd tile width versus image width. Reported as MSVR 35103, aka<br>"cpStripToTile heap-buffer-overflow."<br><br>CVSS3 Base Score 7<br><br>Related CVEs: CVE-2016-9537, CVE-2016-9536, CVE-2016-9535, CVE-2016-9534, CVE-2016-9533</p> <h3 data-id="resolution"><strong>RESOLUTION</strong></h3> <p>Fixed in latest Unitrends security update with<br> libtiff-3.9.4-21.el6_8</p> <h3 data-id="link-to-advisories"><strong>LINK TO ADVISORIES</strong></h3> <p></p> <ul><li><a rel="nofollow" href="/home/leaving?allowTrusted=1&target=https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2016-9540%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9540%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9537%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9536%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9535%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9534%250D%250Ahttps%3A%2F%2Faccess.redhat.com%2Fsecurity%2Fcve%2Fcve-2016-9533">https://nvd.nist.gov/vuln/detail/CVE-2016-9540 https://access.redhat.com/security/cve/cve-2016-9540 https://access.redhat.com/security/cve/cve-2016-9537 https://access.redhat.com/security/cve/cve-2016-9536 https://access.redhat.com/security/cve/cve-2016-9535 https://access.redhat.com/security/cve/cve-2016-9534 https://access.redhat.com/security/cve/cve-2016-9533</a></li></ul> </article> </main>