CVE-2014-8128
Summary
| CVE | CVE-2014-8128 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2020-02-12 03:15:00 UTC |
|---|
| Updated | 2020-02-14 18:17:00 UTC |
|---|
| Description | LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| APPLE-SA-2015-06-30-2 OS X Yosemite v10.10.4 and Security Update 2015-005 |
MISC |
lists.apple.com |
Mailing List, Third Party Advisory |
| oss-security - Multiple vulnerabilities in LibTIFF and associated tools |
MISC |
openwall.com |
Mailing List, Third Party Advisory |
| APPLE-SA-2015-06-30-1 iOS 8.4 |
MISC |
lists.apple.com |
Mailing List, Third Party Advisory |
| 1185812 – (CVE-2014-8128) CVE-2014-8128 libtiff: out-of-bounds write in multiple tools |
MISC |
bugzilla.redhat.com |
Issue Tracking, Patch, Third Party Advisory |
| About the security content of iOS 8.4 - Apple Support |
MISC |
support.apple.com |
Third Party Advisory |
| About the security content of OS X Yosemite v10.10.4 and Security Update 2015-005 - Apple Support |
MISC |
support.apple.com |
Third Party Advisory |
| www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt |
MISC |
www.conostix.com |
Third Party Advisory |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 710479 Gentoo Linux libTIFF Multiple Vulnerabilities (GLSA 201701-16)
