Critical severity9.8NVD Advisory· Published Nov 22, 2016· Updated May 6, 2026

CVE-2016-9535

Description

tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."

Affected products

LibTIFF/Libtiff
cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1nvdIssue TrackingPatchThird Party Advisory
github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33nvdIssue TrackingPatchThird Party Advisory
www.securityfocus.com/bid/94484nvdThird Party AdvisoryVDB Entry
rhn.redhat.com/errata/RHSA-2017-0225.htmlnvd
www.debian.org/security/2017/dsa-3844nvd
www.securityfocus.com/bid/94744nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000