Lucene search

K
mageiaGentoo FoundationMGASA-2013-0267
HistoryAug 30, 2013 - 9:40 p.m.

Updated libtiff packages fix CVE-2013-4244

2013-08-3021:40:20
Gentoo Foundation
advisories.mageia.org
6

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

59.2%

Updated libtiff packages fix security vulnerability: Pedro Ribeiro and Huzaifa S. Sidhpurwala discovered multiple vulnerabilities in various tools shipped by the tiff library. Processing a malformed file may lead to denial of service or the execution of arbitrary code (CVE-2013-4244).

OSVersionArchitecturePackageVersionFilename
Mageia2noarchlibtiff< 4.0.1-2.8libtiff-4.0.1-2.8.mga2
Mageia3noarchlibtiff< 4.0.3-4.2libtiff-4.0.3-4.2.mga3

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

59.2%