CVE-2009-5022

Опубликовано: 03 мая 2011

Источник: debian

Описание

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	3.9.5-1		package
tiff3	not-affected			package
tiff	not-affected		lenny	package

Примечания

http://bugzilla.maptools.org/show_bug.cgi?id=1999

Связанные уязвимости

CVE-2009-5022

ubuntu

около 14 лет назад

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

CVE-2009-5022

redhat

больше 16 лет назад

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

CVE-2009-5022

nvd

около 14 лет назад

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

GHSA-c6jf-8jhf-3f5j

github

около 3 лет назад

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

ELSA-2011-0452

oracle-oval

около 14 лет назад

ELSA-2011-0452: libtiff security update (IMPORTANT)