CVE-2015-8668

Published: Jan 8, 2016Modified: May 6, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.

Affected (11)

Products: Libtiff: Libtiff · Oracle: Linux, Vm Server · Redhat: Enterprise Linux, Enterprise Linux Desktop, Enterprise Linux Workstation

1 product

2 products

3 products

Enterprise Linux

Enterprise Linux Desktop

Enterprise Linux Workstation

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Libtiff Libtiff	Up to 4.0.6

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Oracle Linux	Version 6
Oracle Linux	Version 7
Oracle Vm Server	Version 3.3
Oracle Vm Server	Version 3.4

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Workstation	Version 6.0
Redhat Enterprise Linux Workstation	Version 7.0

Related CWEs

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (14)

http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://rhn.redhat.com/errata/RHSA-2016-1546.html

Source: cve@mitre.org

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-1547.html

Source: cve@mitre.org

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: cve@mitre.org

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: cve@mitre.org

Third Party Advisory

http://www.securityfocus.com/archive/1/537208/100/0/threaded

Source: cve@mitre.org

Broken LinkVDB Entry

https://security.gentoo.org/glsa/201701-16

Source: cve@mitre.org

Third Party Advisory

http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

http://rhn.redhat.com/errata/RHSA-2016-1546.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-1547.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.securityfocus.com/archive/1/537208/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkVDB Entry

https://security.gentoo.org/glsa/201701-16

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.