1
Candidate: CVE-2015-7313
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313
5
https://marc.info/?l=oss-security&m=144284777006804&w=2
7
LibTIFF allows remote attackers to cause a denial of service (memory
8
consumption and crash) via a crafted tiff file.
11
mdeslaur> as of 2018-06-12, no upstream fix
12
sbeattie> likely fixed in upstream 4.0.7 release
13
sbeattie> reproducer in oss-security post
15
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124
16
http://bugzilla.maptools.org/show_bug.cgi?id=2524
18
Discovered-by: Gustavo Grieco
22
upstream_tiff: deferred (2018-06-12)
23
precise_tiff: ignored (reached end-of-life)
24
precise/esm_tiff: deferred (2018-06-12)
25
trusty_tiff: deferred (2018-06-12)
26
vivid_tiff: deferred (2018-06-12)
27
vivid/stable-phone-overlay_tiff: ignored (reached end-of-life)
28
vivid/ubuntu-core_tiff: DNE
29
wily_tiff: ignored (reached end-of-life)
30
xenial_tiff: deferred (2018-06-12)
31
yakkety_tiff: ignored (reached end-of-life)
32
zesty_tiff: ignored (reached end-of-life)
33
artful_tiff: deferred (2018-06-12)
34
bionic_tiff: deferred (2018-06-12)
35
devel_tiff: deferred (2018-06-12)