Tiff: NULL pointer dereference in tif_print.c:TIFFPrintDirectory() (CVE-2017-18013)
In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the
tif_print.c
TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.
References:
http://bugzilla.maptools.org/show\_bug.cgi?id=2770
https://nvd.nist.gov/vuln/detail/CVE-2017-18013
Patch:
https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01
(from redmine: issue id 8458, created on 2018-02-01, closed on 2018-02-17)
- Relations:
- child #8460 (closed)
- child #8461 (closed)
- child #8462 (closed)
- child #8463 (closed)
- child #8464 (closed)