Lucene search

K

MitreCVELIST:CVE-2010-2597

HistoryJul 01, 2010 - 6:00 p.m.

CVE-2010-2597

2010-07-0118:00:00

mitre

www.cve.org

1

8.9 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to “downsampled OJPEG input” and possibly related to a compiler optimization that triggers a divide-by-zero error.

References

bugzilla.maptools.org/show_bug.cgi?id=2215

secunia.com/advisories/40422

secunia.com/advisories/40527

secunia.com/advisories/50726

security.gentoo.org/glsa/glsa-201209-02.xml

www.debian.org/security/2012/dsa-2552

www.redhat.com/support/errata/RHSA-2010-0519.html

www.vupen.com/english/advisories/2010/1761

bugs.launchpad.net/bugs/593067

bugzilla.redhat.com/show_bug.cgi?id=583081

bugzilla.redhat.com/show_bug.cgi?id=603703

8.9 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

Related for CVELIST:CVE-2010-2597

ubuntucve2 cve1 prion1 nvd1 debiancve1 openvas17 oraclelinux1 nessus10 centos1 redhat1 osv1 ubuntu2 debian1 gentoo1 kitploit1