7 matches found
Debian DSA-2552-1 : tiff - several vulnerabilities
Several vulnerabilities were discovered in TIFF, a library set and tools to support the Tag Image File Format TIFF, allowing denial of service and potential privilege escalation. These vulnerabilities can be exploited via a specially crafted TIFF image. - CVE-2012-2113 The tiff2pdf utility has an...
USN-1085-2: tiff regression
USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sauli Pahlman discovered that the TIFF library incorrectl...
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : tiff regression (USN-1085-2)
USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Sauli Pahlman discovered that the TIFF library incorrectly handled invalid...
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : tiff vulnerabilities (USN-1085-1)
Sauli Pahlman discovered that the TIFF library incorrectly handled invalid tdstripbytecount fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubunt...
USN-1085-1: tiff vulnerabilities
Sauli Pahlman discovered that the TIFF library incorrectly handled invalid tdstripbytecount fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubunt...
Mandriva Linux Security Advisory : libtiff (MDVSA-2010:146)
Multiple vulnerabilities has been discovered and corrected in libtiff : The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote attackers to cause a denial of service application crash via a...
CVE-2010-2482
CVE-2010-2482 affects libTIFF up to version 3.9.4, where an invalid td_stripbytecount field in a TIFF file can cause a NULL pointer dereference and application crash (remote DoS) when processing the image. This is part of a set of libTIFF issues described in multiple advisories (e.g., Debian DSA-...