tiff vulnerability

ID USN-1102-1
Type ubuntu
Reporter Ubuntu
Modified 2011-04-04T00:00:00


Martin Barbella discovered that the thunder (aka ThunderScan) decoder in the TIFF library incorrectly handled an unexpected BitsPerSample value. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service.