A flaw was found in LibTIFF 4.0.9. The newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted TIFF file, as demonstrated by tiff2pdf. This is a different vulnerability than CVE-2018-15209. References: http://bugzilla.maptools.org/show_bug.cgi?id=2809
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 1624982] Created mingw-libtiff tracking bugs for this issue: Affects: epel-7 [bug 1624985] Affects: fedora-all [bug 1624984]
openshift-enterprise-3: the following container images include versions of libtiff ranging from 4.0.3-14.el7 to libtiff-4.0.3-27.el7_3 which will not be fixed; the underlying rhel-7 package is marked wontfix due to its low/moderate impact - - openshift3/mediawiki-123 including v3.6.173.0.130-1, v3.7.64-2, v3.9.43-2 - openshift3/mediawiki including v3.10.45-2 - openshift3/metrics-hawkular-metrics including 3.1.1-7, 3.2.1-16, 3.3.1-24, v3.7.64-5, v3.10.45-3