Описание
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 3.7.4-1ubuntu3.3 |
| devel | released | 3.8.2-11 |
| feisty | released | 3.8.2-6ubuntu1 |
| gutsy | released | 3.8.2-7ubuntu2.1 |
| hardy | released | 3.8.2-7ubuntu3.1 |
| upstream | released | 3.8.2-11 |
Показывать по
6.8 Medium
CVSS2
Связанные уязвимости
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, ...
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
ELSA-2008-0847: libtiff security and bug fix update (IMPORTANT)
6.8 Medium
CVSS2