Unrated severityNVD Advisory· Published Feb 12, 2020· Updated Aug 6, 2024
CVE-2014-8128
CVE-2014-8128
Description
LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
27- Range: <8.4
- Range: <10.10.4
- osv-coords23 versionspkg:rpm/opensuse/tiff&distro=openSUSE%20Tumbleweedpkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
< 4.0.7-1.1+ 22 more
- (no CPE)range: < 4.0.7-1.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 4.0.4-12.2
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 4.0.4-12.2
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 4.0.4-12.2
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 3.8.2-141.160.1
- (no CPE)range: < 4.0.4-12.2
- (no CPE)range: < 4.0.9-44.7.1
- (no CPE)range: < 4.0.9-44.7.1
Patches
Vulnerability mechanics
References
7- lists.apple.com/archives/security-announce/2015/Jun/msg00001.htmlmitrex_refsource_MISC
- lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlmitrex_refsource_MISC
- openwall.com/lists/oss-security/2015/01/24/15mitrex_refsource_MISC
- support.apple.com/kb/HT204941mitrex_refsource_MISC
- support.apple.com/kb/HT204942mitrex_refsource_MISC
- www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txtmitrex_refsource_MISC
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
News mentions
0No linked articles in our index yet.