1
PublicDateAtUSN: 2017-04-09
2
Candidate: CVE-2017-7592
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592
6
https://usn.ubuntu.com/usn/usn-3602-1
8
The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a
9
left-shift undefined behavior issue, which might allow remote attackers to
10
cause a denial of service (application crash) or possibly have unspecified
11
other impact via a crafted image.
14
mdeslaur> this will not be fixed in precise/esm
16
http://bugzilla.maptools.org/show_bug.cgi?id=2658
17
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859998
23
upstream: https://github.com/vadz/libtiff/commit/48780b4fcc425cddc4ef8ffdf536f96a0d1b313b
24
upstream_tiff: released (4.0.7-6)
25
precise_tiff: ignored (reached end-of-life)
26
precise/esm_tiff: ignored
27
trusty_tiff: released (4.0.3-7ubuntu0.8)
28
vivid/stable-phone-overlay_tiff: ignored (reached end-of-life)
29
vivid/ubuntu-core_tiff: DNE
30
xenial_tiff: released (4.0.6-1ubuntu0.3)
31
yakkety_tiff: ignored (reached end-of-life)
32
zesty_tiff: ignored (reached end-of-life)
33
artful_tiff: not-affected (4.0.8-5)
34
devel_tiff: not-affected (4.0.9-4)