libtiff-4.0.3-35.0.2.el7.AXS7
エラータID: AXSA:2024-8988:07
リリース日:
2024/11/13 Wednesday - 14:07
題名:
libtiff-4.0.3-35.0.2.el7.AXS7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- LibTIFF の tif_dirinfo.c には、NULL ポインタデリファレンス
の問題があるため、リモートの攻撃者により、ヒープ領域の
制限などの特定の手段による異常動作の発生を介して、
サービス拒否攻撃を可能とする脆弱性が存在します。
(CVE-2024-7006)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2024-7006
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
追加情報:
N/A
ダウンロード:
Asianux Server 7 for x86_64
- libtiff-4.0.3-35.0.2.el7.AXS7.i686.rpm
MD5: e5418351f4762b0cca9ba2804f7ed9fd
SHA-256: 55895d179c6e62bfbe671704b5ae8b87f1f90ab8a2150a3288422844f233ad40
Size: 175.98 kB - libtiff-4.0.3-35.0.2.el7.AXS7.x86_64.rpm
MD5: 1633dffbba3e3646b9738bf0725ffd6b
SHA-256: b237606332c1cc1d675016f470a17e293dacfbeea8c787cbedfbd7ff9cde5f6c
Size: 173.00 kB - libtiff-devel-4.0.3-35.0.2.el7.AXS7.i686.rpm
MD5: 295bd90ad8d02699dedbe517eec2c191
SHA-256: a58590c74711fd6f8f4086f041aa417f6881846f51c179dc159caaf587367819
Size: 474.48 kB - libtiff-devel-4.0.3-35.0.2.el7.AXS7.x86_64.rpm
MD5: c261c25d6d7ec7e1ec96a262db8f670e
SHA-256: a8f1b23d090d6873b5f1b2f6640b36a9e76b6667585ac2079ad33a93545d1c45
Size: 474.45 kB
English