{"id":"CVE-2015-7554","details":"The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image.","modified":"2026-04-16T06:17:33.279904560Z","published":"2016-01-08T19:59:06Z","related":["SUSE-SU-2016:0160-1","SUSE-SU-2016:0353-1","SUSE-SU-2018:0073-1","SUSE-SU-2018:1179-1","SUSE-SU-2018:1835-1","openSUSE-SU-2024:10554-1"],"references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1546.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1547.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-16"},{"type":"EVIDENCE","url":"http://packetstormsecurity.com/files/135078/libtiff-4.0.6-Invalid-Write.html"},{"type":"EVIDENCE","url":"http://seclists.org/fulldisclosure/2015/Dec/119"},{"type":"EVIDENCE","url":"http://www.openwall.com/lists/oss-security/2015/12/26/7"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2016-01/msg00078.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2016-01/msg00081.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2016-01/msg00100.html"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/537205/100/0/threaded"},{"type":"WEB","url":"http://www.securityfocus.com/bid/79699"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}