Lucene search
Ubuntu.comUB:CVE-2010-2630HistoryJul 06, 2010 - 12:00 a.m.
CVE-2010-2630
2010-07-0600:00:00
ubuntu.com
ubuntu.com
8
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.1%
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate
the data types of codec-specific tags that have an out-of-order position in
a TIFF file, which allows remote attackers to cause a denial of service
(application crash) via a crafted file, a different vulnerability than
CVE-2010-2481.
Bugs
- <https://bugzilla.redhat.com/show_bug.cgi?id=554371>
- <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-2630>
- <http://bugzilla.maptools.org/show_bug.cgi?id=2210>
Notes
| Author | Note |
|---|---|
| mdeslaur | same reproducer as CVE-2010-2481 fixes regression in CVE-2010-2481 patch |
Related
prion
prion
ubuntucve
ubuntucve
CVE-2010-2481
2010-07-06 00:00:00
CVE-2010-2631
2010-07-06 00:00:00
cve
cve
debiancve
debiancve
openvas
openvas
CentOS Update for libtiff CESA-2010:0519 centos5 i386
2011-08-09 00:00:00
RedHat Update for libtiff RHSA-2010:0519-01
2010-07-12 00:00:00
RedHat Update for libtiff RHSA-2010:0519-01
2010-07-12 00:00:00
oraclelinux
oraclelinux
libtiff security update
2010-07-08 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : libtiff (MDVSA-2010:145)
2010-08-09 00:00:00
Oracle Linux 4 / 5 : libtiff (ELSA-2010-0519)
2013-07-12 00:00:00
centos
centos
libtiff security update
2010-07-14 22:28:07
redhat
redhat
(RHSA-2010:0519) Important: libtiff security update
2010-07-08 00:00:00
debian
debian
[SECURITY] [DSA 2552-1] tiff security update
2012-09-26 21:55:26
ubuntu
ubuntu
tiff regression
2011-03-15 00:00:00
tiff vulnerabilities
2011-03-07 00:00:00
osv
osv
tiff - several
2012-09-26 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2012-09-23 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.1%
Related for UB:CVE-2010-2630