Executive Summary

Informations
NameCVE-2019-6128First vendor Publication2019-01-11
VendorCveLast vendor Modification2019-04-22

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6128

CWE : Common Weakness Enumeration

%idName
100 %CWE-399Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Os5
Os1

Sources (Detail)

SourceUrl
CONFIRM https://gitlab.com/libtiff/libtiff/commit/0c74a9f49b8d7a36b17b54a7428b3526d20...
MISC http://bugzilla.maptools.org/show_bug.cgi?id=2836
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00041.html
UBUNTU https://usn.ubuntu.com/3906-1/
https://usn.ubuntu.com/3906-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2019-04-22 21:19:23
  • Multiple Updates
2019-04-19 21:19:32
  • Multiple Updates
2019-04-06 05:19:10
  • Multiple Updates
2019-03-25 17:19:08
  • Multiple Updates
2019-03-21 21:19:23
  • Multiple Updates
2019-03-13 21:19:53
  • Multiple Updates
2019-03-13 13:19:39
  • Multiple Updates
2019-01-17 21:19:27
  • Multiple Updates
2019-01-11 09:19:16
  • First insertion