Heap Buffer Overflow in libtiff 4.0.6's TIFFFlushData1()

Heap Buffer Overflow in libtiff 4.0.6's TIFFFlushData1()

CVE-2016-9534 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didn't reset the tif_rawcc and tif_rawcp members. Reported as MSVR 35095, aka "TIFFFlushData1 heap-buffer-overflow."

Learn more about our Web Application Penetration Testing UK.