Lucene search
Ubuntu.comUB:CVE-2013-4243HistorySep 10, 2013 - 12:00 a.m.
CVE-2013-4243
2013-09-1000:00:00
ubuntu.com
ubuntu.com
10
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.035 Low
EPSS
Percentile
91.5%
Heap-based buffer overflow in the readgifimage function in the gif2tiff
tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial
of service (crash) and possibly execute arbitrary code via a crafted height
and width values in a GIF image.
Bugs
- <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917>
- <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4243>
- <http://bugzilla.maptools.org/show_bug.cgi?id=2451>
Notes
| Author | Note |
|---|---|
| jdstrand | per Debian, tiff3 source package doesn’t build the TIFF tools |
| mdeslaur | as of 2014-03-10, no upstream fix yet |
Related
prion
prion
Heap overflow
2013-09-10 19:55:00
securityvulns
securityvulns
gif2tiff buffer overflow
2014-06-26 00:00:00
[SECURITY] [DSA 2965-1] tiff security update
2014-06-26 00:00:00
debian
debian
tiff security update
2014-07-01 18:01:35
tiff security update
2014-07-01 17:53:00
[SECURITY] [DSA 2965-1] tiff security update
2014-06-22 07:00:35
osv
osv
tiff - security update
2014-07-01 00:00:00
tiff - security update
2014-06-22 00:00:00
nessus
nessus
Debian DSA-2965-1 : tiff - security update
2014-06-23 00:00:00
Fedora 20 : mingw-libtiff-4.0.3-4.fc20 (2014-6837)
2014-06-10 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-0013-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 2965-1 (tiff - security update)
2014-06-22 00:00:00
Mageia: Security Advisory (MGASA-2013-0291)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2013-4243
2013-09-10 19:55:00
cve
cve
CVE-2013-4243
2013-09-10 19:55:00
mageia
mageia
Updated libtiff package fixes security vulnerability
2013-09-25 01:43:52
fedora
fedora
[SECURITY] Fedora 20 Update: libtiff-4.0.3-15.fc20
2014-05-28 23:52:12
[SECURITY] Fedora 19 Update: libtiff-4.0.3-10.fc19
2014-06-10 03:07:40
[SECURITY] Fedora 19 Update: mingw-libtiff-4.0.3-4.fc19
2014-06-10 03:14:08
ubuntu
ubuntu
LibTIFF vulnerabilities
2014-05-06 00:00:00
amazon
amazon
Medium: libtiff
2014-06-26 10:31:00
Medium: libtiff
2014-03-13 18:13:00
f5
f5
SOL16715 - Multiple LibTIFF vulnerabilities
2015-06-05 00:00:00
K16715 : Multiple LibTIFF vulnerabilities
2015-06-05 00:00:00
redhat
redhat
(RHSA-2014:0223) Moderate: libtiff security update
2014-02-27 00:00:00
(RHSA-2014:0222) Moderate: libtiff security update
2014-02-27 00:00:00
(RHSA-2014:0339) Important: rhev-hypervisor6 security update
2014-03-31 00:00:00
oraclelinux
oraclelinux
libtiff security update
2014-02-27 00:00:00
libtiff security update
2014-02-27 00:00:00
libtiff security update
2016-08-02 00:00:00
centos
centos
libtiff security update
2014-02-28 00:37:27
libtiff security update
2014-02-28 00:43:50
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:01:26
Denial Of Service (DoS)
2019-05-02 05:01:26
Denial Of Service (DoS)
2019-05-02 05:01:26
altlinux
altlinux
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2017-01-09 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.035 Low
EPSS
Percentile
91.5%
Related for UB:CVE-2013-4243