Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in _TIFFmemcpy' funtion in the component 'tif_unix.c'. References: http://bugzilla.maptools.org/show_bug.cgi?id=2852 https://gitlab.com/libtiff/libtiff/-/issues/159
Created mingw-libtiff tracking bugs for this issue: Affects: fedora-all [bug 2003802]
No RHEL Affects. The affected version was never introduced into a RHEL Stream and as such we are not affected by this flaw.
No hosted services affects if flaw is limited to 4.0.10 as that version is not present.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-19144