CVE-2018-18557
Publication date 22 October 2018
Last updated 24 July 2024
Ubuntu priority
LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 (with JBIG enabled) decodes arbitrarily-sized JBIG into a buffer, ignoring the buffer size, which leads to a tif_jbig.c JBIGDecode out-of-bounds write.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| tiff | ||
| 18.04 LTS bionic |
Fixed 4.0.9-5ubuntu0.1
|
|
| 16.04 LTS xenial |
Fixed 4.0.6-1ubuntu0.5
|
|
| 14.04 LTS trusty |
Fixed 4.0.3-7ubuntu0.10
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
8.8 · High
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | Required |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-3864-1
- LibTIFF vulnerabilities
- 22 January 2019
- USN-3906-2
- LibTIFF vulnerabilities
- 18 March 2019