Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-3463HistoryAug 03, 2006 - 1:04 a.m.
CVE-2006-3463
2006-08-0301:04:00
Debian Security Bug Tracker
security-tracker.debian.org
16
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.03 Low
EPSS
Percentile
91.0%
The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value, which triggers an infinite loop.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | <ย 3.8.2-6 | tiff_3.8.2-6_all.deb |
| Debian | 11 | all | tiff | <ย 3.8.2-6 | tiff_3.8.2-6_all.deb |
| Debian | 999 | all | tiff | <ย 3.8.2-6 | tiff_3.8.2-6_all.deb |
| Debian | 13 | all | tiff | <ย 3.8.2-6 | tiff_3.8.2-6_all.deb |
Related
nvd
nvd
CVE-2006-3463
2006-08-03 01:04:00
cvelist
cvelist
CVE-2006-3463
2006-08-03 01:00:00
ubuntucve
ubuntucve
CVE-2006-3463
2006-08-03 00:00:00
cve
cve
CVE-2006-3463
2006-08-03 01:04:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:11:53
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2006-08-04 00:00:00
openvas
openvas
Debian Security Advisory DSA 1137-1 (tiff)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1137-1)
2008-01-17 00:00:00
Slackware Advisory SSA:2006-230-01 libtiff
2012-09-11 00:00:00
debian
debian
[SECURITY] [DSA 1137-1] New tiff packages fix several vulnerabilities
2006-08-02 18:28:12
nessus
nessus
GLSA-200608-07 : libTIFF: Multiple vulnerabilities
2006-08-07 00:00:00
Ubuntu 5.04 / 5.10 / 6.06 LTS : tiff vulnerabilities (USN-330-1)
2007-11-10 00:00:00
suse
suse
possible remote code execution in libtiff
2006-08-01 16:39:12
oraclelinux
oraclelinux
kdegraphics security update
2007-03-22 00:00:00
libtiff security update
2007-03-22 00:00:00
ubuntu
ubuntu
tiff vulnerabilities
2006-08-03 00:00:00
slackware
slackware
[slackware-security] libtiff
2006-08-18 08:00:57
osv
osv
tiff - several vulnerabilities
2006-08-02 00:00:00
centos
centos
libtiff security update
2006-08-04 19:40:44
libtiff security update
2006-08-03 03:41:45
kdegraphics security update
2006-08-28 13:40:53
securityvulns
securityvulns
[ MDKSA-2006:137 ] - Updated libtiff packages fix multiple vulnerabilities
2006-08-02 00:00:00
seebug
seebug
Libtiffๅพๅฝขๅบๅคไธชๅฎๅ
จๆผๆด
2006-11-04 00:00:00
redhat
redhat
(RHSA-2006:0603) libtiff security update
2006-08-02 00:00:00
(RHSA-2006:0648) kdegraphics security update
2006-08-28 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.03 Low
EPSS
Percentile
91.0%
Related for DEBIANCVE:CVE-2006-3463