tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-10-14T01:07:02
Updated: 2020-04-30T12:06:14
Reserved: 2019-10-14T00:00:00
Link: CVE-2019-17546
JSON object: View
NVD Information
Status : Modified
Published: 2019-10-14T02:15:11.107
Modified: 2023-11-07T03:06:19.310
Link: CVE-2019-17546
JSON object: View
Redhat Information
No data.