Skip to main content

Divide By Zero

CVE-2016-3623

Severity High
Score 7.5/10

Summary

The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

Advisory Timeline

  • Published