Lucene search
UbuntuUSN-639-1HistorySep 02, 2008 - 12:00 a.m.
tiff vulnerability
2008-09-0200:00:00
ubuntu.com
31
Releases
- Ubuntu 8.04
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.06
Packages
- tiff -
Details
Drew Yao discovered that the TIFF library did not correctly validate LZW
compressed TIFF images. If a user or automated system were tricked into
processing a malicious image, a remote attacker could execute arbitrary
code or cause an application linked against libtiff to crash, leading
to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | libtiff4 | < 3.8.2-7ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libtiff-opengl | < 3.8.2-7ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libtiff-tools | < 3.8.2-7ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libtiff4-dev | < 3.8.2-7ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libtiffxx0c2 | < 3.8.2-7ubuntu3.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libtiff4 | < 3.8.2-7ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libtiff-opengl | < 3.8.2-7ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libtiff-tools | < 3.8.2-7ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libtiff4-dev | < 3.8.2-7ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libtiffxx0c2 | < 3.8.2-7ubuntu2.1 | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : tiff vulnerability (USN-639-1)
2008-09-03 00:00:00
Fedora 9 : libtiff-3.8.2-11.fc9 (2008-7370)
2008-09-10 00:00:00
openSUSE 10 Security Update : libtiff (libtiff-5540)
2008-09-03 00:00:00
securityvulns
securityvulns
libtiff memory corruption
2008-09-04 00:00:00
[ MDVSA-2008:184 ] libtiff
2008-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: libtiff-3.8.2-11.fc8
2008-09-10 06:39:57
[SECURITY] Fedora 9 Update: libtiff-3.8.2-11.fc9
2008-09-10 06:37:24
[SECURITY] Fedora 9 Update: libtiff-3.8.2-13.fc9
2009-07-03 19:41:40
openvas
openvas
RedHat Update for libtiff RHSA-2008:0847-01
2009-03-06 00:00:00
CentOS Update for libtiff CESA-2008:0863-01 centos2 i386
2009-02-27 00:00:00
SLES10: Security update for libtiff
2009-10-13 00:00:00
seebug
seebug
LibTIFF 'tif_lzw.c'远程整数下溢漏洞
2008-08-27 00:00:00
debian
debian
[SECURITY] [DSA 1632-1] New tiff packages fix arbitrary code execution
2008-08-26 16:22:31
centos
centos
libtiff security update
2008-10-03 18:34:01
libtiff security update
2008-08-29 21:30:43
libtiff security update
2008-08-29 00:41:41
redhat
redhat
(RHSA-2008:0863) Important: libtiff security update
2008-08-28 00:00:00
(RHSA-2008:0847) Important: libtiff security and bug fix update
2008-08-28 00:00:00
(RHSA-2008:0848) Important: libtiff security and bug fix update
2008-08-28 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:34:39
oraclelinux
oraclelinux
libtiff security and bug fix update
2008-08-28 00:00:00
libtiff security update
2008-08-28 00:00:00
libtiff security and bug fix update
2008-08-28 00:00:00
ubuntucve
ubuntucve
CVE-2008-2327
2008-08-27 00:00:00
CVE-2009-2285
2009-07-01 00:00:00
cvelist
cvelist
CVE-2008-2327
2008-08-27 20:00:00
CVE-2009-2285
2009-07-01 12:26:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 3.8.2-alt2
2008-08-31 00:00:00
Security fix for the ALT Linux 5 package libtiff version 3.8.2-alt2
2008-08-31 00:00:00
gentoo
gentoo
libTIFF: User-assisted execution of arbitrary code
2008-09-08 00:00:00
debiancve
debiancve
CVE-2008-2327
2008-08-27 20:41:00
CVE-2009-2285
2009-07-01 13:00:00
prion
prion
Buffer overflow
2008-08-27 20:41:00
Buffer overflow
2009-07-01 13:00:00
cve
cve
CVE-2008-2327
2008-08-27 20:41:00
CVE-2009-2285
2009-07-01 13:00:00
vmware
vmware
Updated ESX packages for libxml2, ucd-snmp, libtiff
2008-10-31 00:00:00
Updated ESX packages for libxml2, ucd-snmp, libtiff
2008-10-31 00:00:00