1
Candidate: CVE-2016-10270
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270
5
https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/
6
https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018
7
http://bugzilla.maptools.org/show_bug.cgi?id=2608
9
LibTIFF 4.0.7 allows remote attackers to cause a denial of service
10
(heap-based buffer over-read) or possibly have unspecified other impact via
11
a crafted TIFF image, related to "READ of size 8" and
12
libtiff/tif_read.c:523:22.
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846837
18
Discovered-by: Agostino Sarubbo
22
upstream_tiff: released (4.0.7-2)
23
precise_tiff: not-affected
24
trusty_tiff: not-affected
25
vivid/stable-phone-overlay_tiff: not-affected
26
vivid/ubuntu-core_tiff: DNE
27
xenial_tiff: not-affected
28
yakkety_tiff: not-affected
29
devel_tiff: not-affected (4.0.7-5)