Vulnerability Name:

CVE-2015-8668 (CCN-109279)

Assigned:2015-12-28
Published:2015-12-28
Updated:2018-10-30
Summary:Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
CVSS v3 Severity:9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.6 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L)
7.3 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
3.3 Low (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
2.9 Low (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.3 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-119
CWE-122
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2015-8668

Source: MISC
Type: Exploit
http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html

Source: CCN
Type: RHSA-2016-1546
Important: libtiff security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1546

Source: CCN
Type: RHSA-2016-1547
Important: libtiff security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1547

Source: CCN
Type: BugTraq Mailing List, Mon, 28 Dec 2015 02:40:36 GMT
libtiff bmp file Heap Overflow (CVE-2015-8668)

Source: CCN
Type: IBM Security Bulletin 874884 (Dynamic System Analysis (DSA) Preboot)
IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in libTIFF

Source: CCN
Type: IBM Security Bulletin T1024132 (PowerKVM)
Multiple vulnerabilities in libtiff affect PowerKVM

Source: CCN
Type: IBM Security Bulletin T1024193 (SmartCloud Entry)
Libtiff vulnerabilities affect IBM SmartClound Entry

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: BUGTRAQ
Type: UNKNOWN
20151228 libtiff bmp file Heap Overflow (CVE-2015-8668)

Source: CCN
Type: BID-79696
LibTIFF CVE-2015-8668 Heap Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
libtiff-cve20158668-bo(109279)

Source: GENTOO
Type: UNKNOWN
GLSA-201701-16

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-8668

Vulnerable Configuration:Configuration 1:
  • cpe:/a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

    • Configuration RedHat 9:
  • cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

    • Configuration RedHat 10:
  • cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:smartcloud_entry:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:smartcloud_entry:3.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:smartcloud_entry:2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:smartcloud_entry:2.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:powerkvm:3.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_hpc_node:7:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:7:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:6:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:6:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20158668
    V
    		CVE-2015-8668
    2022-09-02
    oval:org.opensuse.security:def:30286
    P
    		Security update for chrony (Moderate)
    2021-12-22
    oval:org.opensuse.security:def:34593
    P
    		Security update for postgresql, postgresql13, postgresql14 (Important)
    2021-11-20
    oval:org.opensuse.security:def:31703
    P
    		Security update for MozillaFirefox (Important)
    2021-11-17
    oval:org.opensuse.security:def:29444
    P
    		Security update for samba (Important)
    2021-11-16
    oval:org.opensuse.security:def:30118
    P
    		Security update for unrar (Moderate)
    2021-08-25
    oval:org.opensuse.security:def:31250
    P
    		Security update for openssl (Important)
    2021-08-24
    oval:org.opensuse.security:def:33697
    P
    		Security update for cpio (Important)
    2021-08-14
    oval:org.opensuse.security:def:34503
    P
    		Security update for the Linux Kernel (Important)
    2021-08-10
    oval:org.opensuse.security:def:30107
    P
    		Security update for webkit2gtk3 (Important)
    2021-08-03
    oval:org.opensuse.security:def:31659
    P
    		Security update for qemu (Important)
    2021-07-29
    oval:org.opensuse.security:def:30106
    P
    		Security update for linuxptp (Important)
    2021-07-21
    oval:org.opensuse.security:def:32952
    P
    		Security update for libxml2 (Moderate)
    2021-06-18
    oval:org.opensuse.security:def:31637
    P
    		Security update for ucode-intel (Important)
    2021-06-10
    oval:org.opensuse.security:def:36432
    P
    		libadns-devel-1.4-73.21 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36390
    P
    		dbus-1-glib-devel-0.76-34.22.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:31193
    P
    		Security update for libX11 (Important)
    2021-06-08
    oval:org.opensuse.security:def:34446
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:30192
    P
    		Security update for bind (Important)
    2021-05-04
    oval:org.opensuse.security:def:33087
    P
    		Security update for java-1_8_0-ibm (Important)
    2021-02-26
    oval:org.opensuse.security:def:28932
    P
    		Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:35283
    P
    		Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:31337
    P
    		Security update for python (Important)
    2021-02-11
    oval:org.opensuse.security:def:33653
    P
    		Security update for dnsmasq (Important)
    2021-01-19
    oval:org.opensuse.security:def:28863
    P
    		Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:35647
    P
    		w3m-0.5.2-132.1.37 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35606
    P
    		libvirt-0.7.6-1.9.8 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35752
    P
    		libltdl7-2.2.6-2.131.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35708
    P
    		glibc-2.11.3-17.31.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35680
    P
    		cups-1.3.9-8.44.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35641
    P
    		syslog-ng-2.0.9-27.27.19 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35592
    P
    		libneon27-0.28.3-2.12.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35533
    P
    		cups-1.3.9-8.30.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31557
    P
    		Security update for python-setuptools (Important)
    2020-12-02
    oval:org.opensuse.security:def:26979
    P
    		libvorbis on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33239
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29586
    P
    		Security update for apache2-mod_nss (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26968
    P
    		librpcsecgss on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33182
    P
    		libsoup-2_4-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29547
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26967
    P
    		libpython2_6-1_0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29498
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34968
    P
    		Security update for gcc48 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34924
    P
    		Security update for expat (Important)
    2020-12-01
    oval:org.opensuse.security:def:32873
    P
    		gnutls on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29291
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:34898
    P
    		Security update for dbus-1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32862
    P
    		freeradius-server on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29206
    P
    		Security update for openssl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34859
    P
    		Security update for clamav (Important)
    2020-12-01
    oval:org.opensuse.security:def:31595
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32861
    P
    		foomatic-filters on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29149
    P
    		Security update for libcdio (Low)
    2020-12-01
    oval:org.opensuse.security:def:34810
    P
    		Security update for apache2-mod_jk (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29063
    P
    		Security update for bzip2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:34752
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:30919
    P
    		Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30875
    P
    		Security update for expat (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30855
    P
    		Security update for dnsmasq (Important)
    2020-12-01
    oval:org.opensuse.security:def:28852
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:30816
    P
    		Security update for coreutils (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28851
    P
    		Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:34348
    P
    		Security update for strongswan
    2020-12-01
    oval:org.opensuse.security:def:30767
    P
    		Security update for aspell (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34212
    P
    		Security update for php5 (Important)
    2020-12-01
    oval:org.opensuse.security:def:30712
    P
    		Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:34128
    P
    		Security update for mozilla-nss
    2020-12-01
    oval:org.opensuse.security:def:30557
    P
    		Security update for libgcrypt
    2020-12-01
    oval:org.opensuse.security:def:34117
    P
    		Recommended update for ncurses (Important)
    2020-12-01
    oval:org.opensuse.security:def:30470
    P
    		Security update for PHP5
    2020-12-01
    oval:org.opensuse.security:def:32380
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34116
    P
    		Security update for nautilus (Low)
    2020-12-01
    oval:org.opensuse.security:def:30413
    P
    		Security update for xorg-x11-libX11 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32341
    P
    		Security update for spice (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30324
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:35373
    P
    		Security update for nmap (Important)
    2020-12-01
    oval:org.opensuse.security:def:35226
    P
    		Security update for lzo
    2020-12-01
    oval:org.opensuse.security:def:31598
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28416
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:35125
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:31549
    P
    		Security update for screen (Low)
    2020-12-01
    oval:org.opensuse.security:def:28381
    P
    		Security update for rubygem-actionpack-3_2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:34989
    P
    		Security update for glib2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31493
    P
    		Security update for python
    2020-12-01
    oval:org.opensuse.security:def:27743
    P
    		Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:34905
    P
    		Security update for djvulibre (Low)
    2020-12-01
    oval:org.opensuse.security:def:27699
    P
    		Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:34894
    P
    		Security update for cvs (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27685
    P
    		Security update for xorg-x11
    2020-12-01
    oval:org.opensuse.security:def:34375
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34893
    P
    		Security update for curl
    2020-12-01
    oval:org.opensuse.security:def:27646
    P
    		Security update for libvirt
    2020-12-01
    oval:org.opensuse.security:def:34335
    P
    		Security update for sqlite3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31101
    P
    		Security update for kernel-source (Important)
    2020-12-01
    oval:org.opensuse.security:def:27597
    P
    		Security update for apache2-mod_fcgid
    2020-12-01
    oval:org.opensuse.security:def:30969
    P
    		Security update for gstreamer-0_10-plugins-base (Important)
    2020-12-01
    oval:org.opensuse.security:def:27544
    P
    		python-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30895
    P
    		Security update for MozillaFirefox, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:27393
    P
    		empathy on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33629
    P
    		Security update for apache2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30884
    P
    		Security update for MozillaFirefox
    2020-12-01
    oval:org.opensuse.security:def:27309
    P
    		tgt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33590
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:30323
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30883
    P
    		Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:27252
    P
    		openslp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33541
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27171
    P
    		libQtWebKit4-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33484
    P
    		Security update for libpng
    2020-12-01
    oval:org.opensuse.security:def:29648
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27043
    P
    		tar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33327
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29604
    P
    		Security update for axis (Moderate)
    2020-12-01
    oval:com.redhat.rhsa:def:20161546
    P
    		RHSA-2016:1546: libtiff security update (Important)
    2016-08-02
    oval:com.redhat.rhsa:def:20161547
    P
    		RHSA-2016:1547: libtiff security update (Important)
    2016-08-02
    oval:com.ubuntu.xenial:def:20158668000
    V
    		CVE-2015-8668 on Ubuntu 16.04 LTS (xenial) - low.
    2016-01-08
    oval:com.ubuntu.precise:def:20158668000
    V
    		CVE-2015-8668 on Ubuntu 12.04 LTS (precise) - low.
    2016-01-08
    oval:com.ubuntu.xenial:def:201586680000000
    V
    		CVE-2015-8668 on Ubuntu 16.04 LTS (xenial) - low.
    2016-01-08
    oval:com.ubuntu.trusty:def:20158668000
    V
    		CVE-2015-8668 on Ubuntu 14.04 LTS (trusty) - low.
    2016-01-08
    BACK
    libtiff libtiff 4.0.6
    libtiff libtiff 4.0.6
    ibm smartcloud entry 3.1
    ibm smartcloud entry 3.2
    ibm smartcloud entry 2.3
    ibm smartcloud entry 2.4
    ibm powerkvm 2.1
    ibm powerkvm 3.1
    redhat enterprise linux desktop 7
    redhat enterprise linux hpc node 7
    redhat enterprise linux hpc node eus 7.2
    redhat enterprise linux server 7
    redhat enterprise linux server aus 7.2
    redhat enterprise linux server eus 7.2
    redhat enterprise linux workstation 7
    redhat enterprise linux desktop 6
    redhat enterprise linux hpc node 6
    redhat enterprise linux server 6
    redhat enterprise linux workstation 6