Heap-based buffer overflow in the PackBitsPreEncode...
Critical severity
Unreviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated Dec 20, 2023
Description
Published by the National Vulnerability Database
Jan 8, 2016
Published to the GitHub Advisory Database
May 14, 2022
Last updated
Dec 20, 2023
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
References