CVE-2016-9538
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-9538
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9538.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-9538
- Downstream
- Related
- Published
- 2016-11-22T19:59:06Z
- Modified
- 2025-10-18T09:32:40.336522Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
tools/tiffcrop.c in libtiff 4.0.6 reads an undefined buffer in readContigStripsIntoBuffer() because of a uint16 integer overflow. Reported as MSVR 35100.
- References
Affected packages
Git / github.com/vadz/libtiff
Affected ranges
- Type
- GIT
- Repo
- https://github.com/vadz/libtiff
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
Pre360
Release-
Release-3-7-0
Release-v3-5-
Release-v3-5-4
Release-v3-5-5
Release-v3-5-7
Release-v3-6-0
Release-v3-6-0beta2
Release-v3-6-1
Release-v3-7-0-alpha
Release-v3-7-0beta
Release-v3-7-0beta2
Release-v3-7-1
Release-v3-7-2
Release-v3-7-3
Release-v3-7-4
Release-v3-8-0
Release-v3-8-1
Release-v3-8-2
Release-v4-0-0
Release-v4-0-0alpha
Release-v4-0-0alpha4
Release-v4-0-0alpha5
Release-v4-0-0alpha6
Release-v4-0-0beta7
Release-v4-0-1
Release-v4-0-2
Release-v4-0-3
Release-v4-0-4
Release-v4-0-4beta
Release-v4-0-5
Release-v4-0-6
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"deprecated": false,
"source": "https://github.com/vadz/libtiff/commit/43c0b81a818640429317c80fea1e66771e85024b",
"signature_version": "v1",
"target": {
"file": "tools/tiffcp.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"232427039072130429851659266371799894391",
"191342321427644718345565034516085667474",
"243372549092629614568279305409646591918",
"86629854114506982021886073099470035925",
"318444769697916841680281764114220919792"
]
},
"id": "CVE-2016-9538-2cd3c3a6"
},
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/vadz/libtiff/commit/43c0b81a818640429317c80fea1e66771e85024b",
"signature_version": "v1",
"target": {
"function": "tiffcp",
"file": "tools/tiffcp.c"
},
"digest": {
"function_hash": "25215481322634118791199374119652475832",
"length": 6093.0
},
"id": "CVE-2016-9538-3513d943"
},
{
"signature_type": "Line",
"deprecated": false,
"source": "https://github.com/vadz/libtiff/commit/43c0b81a818640429317c80fea1e66771e85024b",
"signature_version": "v1",
"target": {
"file": "tools/tiffcrop.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"4554547364235472400140714772227915399",
"205201238539123249331084554844596075983",
"86997646026669217194474638551587156977",
"276891329001093315787708201183747013595",
"154985182039255178859484639612038353860",
"315557098165198227440073713090276890667",
"83623140861680678709870870961740857722",
"156060344822384567699523889949903679507",
"154382074816021957812503980734039757320",
"212894865834511974334163435159307395909"
]
},
"id": "CVE-2016-9538-46c49515"
},
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/vadz/libtiff/commit/43c0b81a818640429317c80fea1e66771e85024b",
"signature_version": "v1",
"target": {
"function": "readSeparateStripsIntoBuffer",
"file": "tools/tiffcrop.c"
},
"digest": {
"function_hash": "41023061713802383472646983725907848687",
"length": 3496.0
},
"id": "CVE-2016-9538-638b4694"
}
]