Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-1167HistoryMar 28, 2011 - 4:55 p.m.
CVE-2011-1167
2011-03-2816:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.239 Low
EPSS
Percentile
96.5%
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | < 3.9.4-9 | tiff_3.9.4-9_all.deb |
| Debian | 11 | all | tiff | < 3.9.4-9 | tiff_3.9.4-9_all.deb |
| Debian | 10 | all | tiff | < 3.9.4-9 | tiff_3.9.4-9_all.deb |
| Debian | 999 | all | tiff | < 3.9.4-9 | tiff_3.9.4-9_all.deb |
| Debian | 13 | all | tiff | < 3.9.4-9 | tiff_3.9.4-9_all.deb |
Related
nessus
nessus
Fedora 14 : mingw32-libtiff-3.9.5-1.fc14 (2011-5962)
2011-05-04 00:00:00
Scientific Linux Security Update : libtiff on SL5.x i386/x86_64
2012-08-01 00:00:00
RHEL 4 / 5 / 6 : libtiff (RHSA-2011:0392)
2011-03-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package libtiff version 3.9.5-alt1
2011-04-13 00:00:00
Security fix for the ALT Linux 10 package libtiff version 3.9.5-alt1
2011-04-13 00:00:00
Security fix for the ALT Linux 5 package libtiff version 3.9.5-alt1.M50P.1
2011-09-29 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: mingw32-libtiff-3.9.5-1.fc15
2011-04-30 01:38:04
[SECURITY] Fedora 14 Update: mingw32-libtiff-3.9.5-1.fc14
2011-05-04 00:57:40
[SECURITY] Fedora 14 Update: libtiff-3.9.4-4.fc14
2011-04-08 23:19:15
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:54:05
openvas
openvas
Ubuntu Update for tiff vulnerability USN-1102-1
2011-04-06 00:00:00
Fedora Update for mingw32-libtiff FEDORA-2011-5962
2011-05-06 00:00:00
Fedora Update for mingw32-libtiff FEDORA-2011-5962
2011-05-06 00:00:00
zdi
zdi
prion
prion
Heap overflow
2011-03-28 16:55:00
securityvulns
securityvulns
ZDI-11-107: Libtiff ThunderCode Decoder THUNDER_2BITDELTAS Remote Code Execution Vulnerability
2011-03-23 00:00:00
libtiff buffer overflow
2011-03-23 00:00:00
APPLE-SA-2012-09-24-1 Apple TV 5.1
2012-10-04 00:00:00
ubuntucve
ubuntucve
CVE-2011-1167
2011-03-28 00:00:00
cve
cve
CVE-2011-1167
2011-03-28 16:55:00
ubuntu
ubuntu
tiff vulnerability
2011-04-04 00:00:00
centos
centos
libtiff security update
2011-03-31 15:03:00
redhat
redhat
(RHSA-2011:0392) Important: libtiff security and bug fix update
2011-03-28 00:00:00
slackware
slackware
[slackware-security] libtiff
2011-04-11 21:57:06
oraclelinux
oraclelinux
libtiff security and bug fix update
2011-03-28 00:00:00
debian
debian
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
[SECURITY] [DSA 2210-1] tiff security update
2011-04-03 12:23:08
osv
osv
tiff - several
2011-04-03 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2012-09-23 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.239 Low
EPSS
Percentile
96.5%
Related for DEBIANCVE:CVE-2011-1167