LibTIFF TiffFetchShortPair远程缓冲区溢出漏洞

Libtiff是一种TIFF规范的标准ANSI C实现库。 Libtiff包含的tifdirread.c存在多个堆栈溢出，远程攻击者可以利用漏洞以应用进程权限执行任意命令。 TIFFFetchShortPair用于从输入文件中读取两个无符号短整数，其通过CheckDirCount进行边界检查，但对tdircount数据缺少正确检查，可导致拒绝服务攻击，也可能以应用进程权限执行任意命令。 S.u.S.E. UnitedLinux 1.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.0 S.u.S.E...

libTIFF: Multiple vulnerabilities

Background libTIFF provides support for reading and manipulating TIFF images. Description Tavis Ormandy of the Google Security Team discovered several heap and stack buffer overflows and other flaws in libTIFF. The affected parts include the TIFFFetchShortPair, TIFFScanLineSize and...

DEBIAN-CVE-2006-3459

Multiple stack-based buffer overflows in the TIFF library libtiff before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, including a large tdircount value in the...

CVE-2006-0405

The TIFFFetchShortPair function in tifdirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service application crash via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function...

CVE-2006-0405

CVE-2006-0405 concerns the TIFFFetchShortPair function in tif_dirread.c of libtiff 3.8.0, where a crafted TIFF image can trigger a NULL pointer dereference and cause an application crash (denial of service). The description notes this could be due to changes in type declarations and/or the TIFFVS...