|
|
Subscribe / Log in / New account

tiff: code execution

Package(s):tiff CVE #(s):CVE-2012-3401
Created:July 19, 2012 Updated:August 10, 2012
Description:

From the Ubuntu advisory:

Huzaifa Sidhpurwala discovered that the tiff2pdf utility incorrectly handled certain malformed TIFF images. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges.

Alerts:
Mandriva MDVSA-2013:046 libtiff 2013-04-05
Scientific Linux SL-libt-20121219 libtiff 2012-12-19
Oracle ELSA-2012-1590 libtiff 2012-12-19
Oracle ELSA-2012-1590 libtiff 2012-12-18
CentOS CESA-2012:1590 libtiff 2012-12-19
CentOS CESA-2012:1590 libtiff 2012-12-19
Red Hat RHSA-2012:1590-01 libtiff 2012-12-18
Debian DSA-2552-1 tiff 2012-09-26
Gentoo 201209-02 tiff 2012-09-23
Mandriva MDVSA-2012:127 libtiff 2012-08-08
Fedora FEDORA-2012-11000 libtiff 2012-07-26
Mageia MGASA-2012-0181 libtiff 2012-07-24
Ubuntu USN-1511-1 tiff 2012-07-19
Fedora FEDORA-2012-10978 libtiff 2012-08-09
openSUSE openSUSE-SU-2012:0955-1 tiff 2012-08-06
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds