Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-2598HistoryJul 02, 2010 - 12:43 p.m.
CVE-2010-2598
2010-07-0212:43:53
Debian Security Bug Tracker
security-tracker.debian.org
15
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
76.1%
LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms, as used in tiff2rgba, attempts to process image data even when the required compression functionality is not configured, which allows remote attackers to cause a denial of service via a crafted TIFF image, related to “downsampled OJPEG input.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | < 3.9.4-1 | tiff_3.9.4-1_all.deb |
| Debian | 11 | all | tiff | < 3.9.4-1 | tiff_3.9.4-1_all.deb |
| Debian | 999 | all | tiff | < 3.9.4-1 | tiff_3.9.4-1_all.deb |
| Debian | 13 | all | tiff | < 3.9.4-1 | tiff_3.9.4-1_all.deb |
Related
nvd
nvd
CVE-2010-2598
2010-07-02 12:43:53
cve
cve
CVE-2010-2598
2010-07-02 12:43:53
prion
prion
Input validation
2010-07-02 12:43:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:49:25
cvelist
cvelist
CVE-2010-2598
2010-07-01 18:00:00
openvas
openvas
RedHat Update for libtiff RHSA-2010:0520-01
2010-07-12 00:00:00
CentOS Update for libtiff CESA-2010:0520 centos3 i386
2010-08-20 00:00:00
RedHat Update for libtiff RHSA-2010:0520-01
2010-07-12 00:00:00
nessus
nessus
Oracle Linux 3 : libtiff (ELSA-2010-0520)
2013-07-12 00:00:00
RHEL 3 : libtiff (RHSA-2010:0520)
2010-07-28 00:00:00
CentOS 3 : libtiff (CESA-2010:0520)
2010-08-17 00:00:00
redhat
redhat
(RHSA-2010:0520) Important: libtiff security update
2010-07-08 00:00:00
centos
centos
libtiff security update
2010-08-16 20:25:13
ubuntucve
ubuntucve
CVE-2010-2598
2010-07-02 00:00:00
ubuntu
ubuntu
tiff regression
2011-03-15 00:00:00
tiff vulnerabilities
2011-03-07 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
76.1%
Related for DEBIANCVE:CVE-2010-2598