English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.843068
Category:Ubuntu Local Security Checks
Title:Ubuntu: Security Advisory (USN-3212-1)
Summary:The remote host is missing an update for the 'tiff' package(s) announced via the USN-3212-1 advisory.
Description:Summary:
The remote host is missing an update for the 'tiff' package(s) announced via the USN-3212-1 advisory.

Vulnerability Insight:
It was discovered that LibTIFF incorrectly handled certain malformed
images. If a user or automated system were tricked into opening a specially
crafted image, a remote attacker could crash the application, leading to a
denial of service, or possibly execute arbitrary code with user privileges.

Affected Software/OS:
'tiff' package(s) on Ubuntu 14.04, Ubuntu 16.04, Ubuntu 16.10.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-7554
20151226 libtiff: invalid write (CVE-2015-7554)
http://seclists.org/fulldisclosure/2015/Dec/119
http://www.securityfocus.com/archive/1/537205/100/0/threaded
79699
http://www.securityfocus.com/bid/79699
GLSA-201701-16
https://security.gentoo.org/glsa/201701-16
RHSA-2016:1546
http://rhn.redhat.com/errata/RHSA-2016-1546.html
RHSA-2016:1547
http://rhn.redhat.com/errata/RHSA-2016-1547.html
[oss-security] 20151226 libtiff: invalid write (CVE-2015-7554)
http://www.openwall.com/lists/oss-security/2015/12/26/7
http://packetstormsecurity.com/files/135078/libtiff-4.0.6-Invalid-Write.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
openSUSE-SU-2016:0212
http://lists.opensuse.org/opensuse-updates/2016-01/msg00078.html
openSUSE-SU-2016:0215
http://lists.opensuse.org/opensuse-updates/2016-01/msg00081.html
openSUSE-SU-2016:0252
http://lists.opensuse.org/opensuse-updates/2016-01/msg00100.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8668
Bugtraq: 20151228 libtiff bmp file Heap Overflow (CVE-2015-8668) (Google Search)
http://www.securityfocus.com/archive/1/537208/100/0/threaded
http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html
RedHat Security Advisories: RHSA-2016:1546
RedHat Security Advisories: RHSA-2016:1547
Common Vulnerability Exposure (CVE) ID: CVE-2016-10092
BugTraq ID: 95218
http://www.securityfocus.com/bid/95218
Debian Security Information: DSA-3762 (Google Search)
http://www.debian.org/security/2017/dsa-3762
https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/
https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-10092
http://www.openwall.com/lists/oss-security/2017/01/01/12
http://www.openwall.com/lists/oss-security/2017/01/01/10
Common Vulnerability Exposure (CVE) ID: CVE-2016-10093
BugTraq ID: 95215
http://www.securityfocus.com/bid/95215
https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-10093
Common Vulnerability Exposure (CVE) ID: CVE-2016-10094
BugTraq ID: 95214
http://www.securityfocus.com/bid/95214
Common Vulnerability Exposure (CVE) ID: CVE-2016-3622
BugTraq ID: 85917
http://www.securityfocus.com/bid/85917
http://www.openwall.com/lists/oss-security/2016/04/07/4
http://www.securitytracker.com/id/1035508
Common Vulnerability Exposure (CVE) ID: CVE-2016-3623
BugTraq ID: 85952
http://www.securityfocus.com/bid/85952
http://www.openwall.com/lists/oss-security/2016/04/08/3
SuSE Security Announcement: openSUSE-SU-2016:2275 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-09/msg00039.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-3624
BugTraq ID: 85956
http://www.securityfocus.com/bid/85956
http://bugzilla.maptools.org/show_bug.cgi?id=2568
http://www.openwall.com/lists/oss-security/2016/04/08/4
Common Vulnerability Exposure (CVE) ID: CVE-2016-3632
BugTraq ID: 85953
http://www.securityfocus.com/bid/85953
BugTraq ID: 85960
http://www.securityfocus.com/bid/85960
http://www.openwall.com/lists/oss-security/2016/04/08/9
Common Vulnerability Exposure (CVE) ID: CVE-2016-3658
BugTraq ID: 93331
http://www.securityfocus.com/bid/93331
Debian Security Information: DSA-3844 (Google Search)
http://www.debian.org/security/2017/dsa-3844
http://bugzilla.maptools.org/show_bug.cgi?id=2546
http://www.openwall.com/lists/oss-security/2016/04/08/12
Common Vulnerability Exposure (CVE) ID: CVE-2016-3945
http://www.openwall.com/lists/oss-security/2016/04/08/6
Common Vulnerability Exposure (CVE) ID: CVE-2016-3990
BugTraq ID: 86000
http://www.securityfocus.com/bid/86000
http://www.openwall.com/lists/oss-security/2016/04/12/2
Common Vulnerability Exposure (CVE) ID: CVE-2016-3991
BugTraq ID: 85996
http://www.securityfocus.com/bid/85996
http://www.openwall.com/lists/oss-security/2016/04/12/3
Common Vulnerability Exposure (CVE) ID: CVE-2016-5314
BugTraq ID: 91195
http://www.securityfocus.com/bid/91195
BugTraq ID: 91245
http://www.securityfocus.com/bid/91245
https://www.debian.org/security/2017/dsa-3762
http://www.openwall.com/lists/oss-security/2016/06/15/1
http://www.openwall.com/lists/oss-security/2016/06/15/9
http://www.openwall.com/lists/oss-security/2016/06/30/3
SuSE Security Announcement: openSUSE-SU-2016:1889 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-07/msg00087.html
SuSE Security Announcement: openSUSE-SU-2016:2321 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-09/msg00060.html
SuSE Security Announcement: openSUSE-SU-2016:2375 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-09/msg00090.html
SuSE Security Announcement: openSUSE-SU-2016:3035 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00017.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-5315
BugTraq ID: 91204
http://www.securityfocus.com/bid/91204
http://www.openwall.com/lists/oss-security/2016/06/15/2
Common Vulnerability Exposure (CVE) ID: CVE-2016-5316
BugTraq ID: 91203
http://www.securityfocus.com/bid/91203
http://www.openwall.com/lists/oss-security/2016/06/15/3
Common Vulnerability Exposure (CVE) ID: CVE-2016-5317
BugTraq ID: 91208
http://www.securityfocus.com/bid/91208
http://www.openwall.com/lists/oss-security/2016/06/15/10
http://www.openwall.com/lists/oss-security/2016/06/15/5
Common Vulnerability Exposure (CVE) ID: CVE-2016-5320
Common Vulnerability Exposure (CVE) ID: CVE-2016-5321
BugTraq ID: 91209
http://www.securityfocus.com/bid/91209
Common Vulnerability Exposure (CVE) ID: CVE-2016-5322
BugTraq ID: 91205
http://www.securityfocus.com/bid/91205
Common Vulnerability Exposure (CVE) ID: CVE-2016-5323
BugTraq ID: 91196
http://www.securityfocus.com/bid/91196
http://www.openwall.com/lists/oss-security/2016/06/15/6
Common Vulnerability Exposure (CVE) ID: CVE-2016-5652
BugTraq ID: 93902
http://www.securityfocus.com/bid/93902
http://www.talosintelligence.com/reports/TALOS-2016-0187/
RedHat Security Advisories: RHSA-2017:0225
http://rhn.redhat.com/errata/RHSA-2017-0225.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-5875
Common Vulnerability Exposure (CVE) ID: CVE-2016-6223
BugTraq ID: 91741
http://www.securityfocus.com/bid/91741
http://www.openwall.com/lists/oss-security/2016/07/13/3
http://www.openwall.com/lists/oss-security/2016/07/14/4
Common Vulnerability Exposure (CVE) ID: CVE-2016-8331
BugTraq ID: 93898
http://www.securityfocus.com/bid/93898
http://www.talosintelligence.com/reports/TALOS-2016-0190/
Common Vulnerability Exposure (CVE) ID: CVE-2016-9273
BugTraq ID: 94271
http://www.securityfocus.com/bid/94271
http://www.openwall.com/lists/oss-security/2016/11/09/20
http://www.openwall.com/lists/oss-security/2016/11/11/6
Common Vulnerability Exposure (CVE) ID: CVE-2016-9297
BugTraq ID: 94419
http://www.securityfocus.com/bid/94419
http://www.openwall.com/lists/oss-security/2016/11/12/2
http://www.openwall.com/lists/oss-security/2016/11/14/7
Common Vulnerability Exposure (CVE) ID: CVE-2016-9448
BugTraq ID: 94420
http://www.securityfocus.com/bid/94420
http://bugzilla.maptools.org/show_bug.cgi?id=2593
http://www.openwall.com/lists/oss-security/2016/11/18/15
Common Vulnerability Exposure (CVE) ID: CVE-2016-9453
BugTraq ID: 94406
http://www.securityfocus.com/bid/94406
http://www.openwall.com/lists/oss-security/2016/11/19/1
Common Vulnerability Exposure (CVE) ID: CVE-2016-9532
BugTraq ID: 94424
http://www.securityfocus.com/bid/94424
http://www.openwall.com/lists/oss-security/2016/11/11/14
http://www.openwall.com/lists/oss-security/2016/11/21/1
http://www.openwall.com/lists/oss-security/2016/11/22/1
Common Vulnerability Exposure (CVE) ID: CVE-2016-9533
BugTraq ID: 94484
http://www.securityfocus.com/bid/94484
BugTraq ID: 94742
http://www.securityfocus.com/bid/94742
Common Vulnerability Exposure (CVE) ID: CVE-2016-9534
BugTraq ID: 94743
http://www.securityfocus.com/bid/94743
Common Vulnerability Exposure (CVE) ID: CVE-2016-9535
BugTraq ID: 94744
http://www.securityfocus.com/bid/94744
Common Vulnerability Exposure (CVE) ID: CVE-2016-9536
BugTraq ID: 94745
http://www.securityfocus.com/bid/94745
Common Vulnerability Exposure (CVE) ID: CVE-2016-9537
BugTraq ID: 94746
http://www.securityfocus.com/bid/94746
Common Vulnerability Exposure (CVE) ID: CVE-2016-9538
BugTraq ID: 94753
http://www.securityfocus.com/bid/94753
Common Vulnerability Exposure (CVE) ID: CVE-2016-9539
BugTraq ID: 94754
http://www.securityfocus.com/bid/94754
Common Vulnerability Exposure (CVE) ID: CVE-2016-9540
BugTraq ID: 94747
http://www.securityfocus.com/bid/94747
Common Vulnerability Exposure (CVE) ID: CVE-2017-5225
BugTraq ID: 95413
http://www.securityfocus.com/bid/95413
https://security.gentoo.org/glsa/201709-27
http://www.securitytracker.com/id/1037911
CopyrightCopyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.