CVE-2016-10266 Ubuntu Security Notification for Tiff Vulnerabilities (USN-3602-1)

漏洞类别:Ubuntu

漏洞等级:

漏洞信息

It was discovered that LibTIFF incorrectly handled certain malformed images.

漏洞危害

If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges.

解决方案

Refer to Ubuntu advisory USN-3602-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3602-1: 14.04 (Kylin) on src (libtiff-tools)

USN-3602-1: 16.04 (Xenial) on src (libtiff-tools)

USN-3602-1: 16.04 (Xenial) on src (libtiff5)

USN-3602-1: 14.04 (Kylin) on src (libtiff5)

Leave a Reply