Lucene search
FreeBSDF6680C03-0BD8-11D9-8A8A-000C41E2CDADHistoryOct 13, 2004 - 12:00 a.m.
tiff -- RLE decoder heap overflows
2004-10-1300:00:00
vuxml.freebsd.org
21
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.061 Low
EPSS
Percentile
93.5%
Chris Evans discovered several heap buffer overflows in
libtiff’s RLE decoder. These overflows could be triggered
by a specially-crafted TIFF image file, resulting in an
application crash and possibly arbitrary code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | tiff | <= 3.6.1_1 | UNKNOWN |
| FreeBSD | any | noarch | linux-tiff | < 3.6.1 | UNKNOWN |
| FreeBSD | any | noarch | pdflib | < 6.0.1 | UNKNOWN |
| FreeBSD | any | noarch | pdflib-perl | < 6.0.1 | UNKNOWN |
| FreeBSD | any | noarch | gdal | < 1.2.1_2 | UNKNOWN |
| FreeBSD | any | noarch | ivtools | < 1.2.3 | UNKNOWN |
| FreeBSD | any | noarch | paraview | < 2.4.3 | UNKNOWN |
| FreeBSD | any | noarch | fractorama | < 1.6.7_1 | UNKNOWN |
Related
openvas
openvas
FreeBSD Ports: tiff
2008-09-04 00:00:00
FreeBSD Ports: tiff
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200410-11 (tiff)
2008-09-24 00:00:00
securityvulns
securityvulns
[ GLSA 200410-11 ] tiff: Buffer overflows in image decoding
2004-10-15 00:00:00
MDKSA-2004:111 - Updated wxGTK2 packages fix vulnerabilities
2004-10-22 00:00:00
nessus
nessus
FreeBSD : tiff -- RLE decoder heap overflows (f6680c03-0bd8-11d9-8a8a-000c41e2cdad)
2005-07-13 00:00:00
GLSA-200410-11 : tiff: Buffer overflows in image decoding
2004-10-14 00:00:00
Fedora Core 2 : kdegraphics-3.2.2-1.1 (2004-357)
2004-10-30 00:00:00
ubuntucve
ubuntucve
CVE-2004-0803
2004-12-23 00:00:00
debiancve
debiancve
CVE-2004-0803
2004-12-23 05:00:00
cvelist
cvelist
CVE-2004-0803
2004-10-26 04:00:00
cve
cve
CVE-2004-0803
2004-12-23 05:00:00
gentoo
gentoo
tiff: Buffer overflows in image decoding
2004-10-13 00:00:00
kfax: Multiple overflows in the included TIFF library
2004-12-19 00:00:00
PDFlib: Multiple overflows in the included TIFF library
2004-12-05 00:00:00
slackware
slackware
[slackware-security] libtiff
2004-11-01 08:00:50
cert
cert
LibTIFF contains multiple heap-based buffer overflows
2004-12-01 00:00:00
LibTIFF contains multiple integer overflows
2004-12-01 00:00:00
LibTIFF vulnerable to denial-of-service condition
2004-12-01 00:00:00
debian
debian
[SECURITY] [DSA 567-1] New libtiff packages fix remote code execution
2004-10-15 17:51:16
[SECURITY] [DSA 567-1] New libtiff packages fix remote code execution
2004-10-15 00:00:00
osv
osv
tiff - heap overflows
2004-10-15 00:00:00
redhat
redhat
(RHSA-2004:577) libtiff security update
2004-10-22 00:00:00
(RHSA-2005:354) tetex security update
2005-04-01 00:00:00
(RHSA-2005:021) kdegraphics security update
2005-04-12 00:00:00
centos
centos
kdegraphics security update
2005-04-12 16:01:20
tetex security update
2005-04-01 21:29:55
kdegraphics security update
2005-04-12 23:05:10
suse
suse
remote denial of service in kernel
2004-10-21 07:52:50
local privilege escalation in libtiff
2004-10-22 14:52:41
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.061 Low
EPSS
Percentile
93.5%
Related for F6680C03-0BD8-11D9-8A8A-000C41E2CDAD