Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-1173HistoryJun 04, 2012 - 8:55 p.m.
CVE-2012-1173
2012-06-0420:55:03
Debian Security Bug Tracker
security-tracker.debian.org
14
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.092 Low
EPSS
Percentile
94.7%
Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | < 4.0.1-2 | tiff_4.0.1-2_all.deb |
| Debian | 11 | all | tiff | < 4.0.1-2 | tiff_4.0.1-2_all.deb |
| Debian | 999 | all | tiff | < 4.0.1-2 | tiff_4.0.1-2_all.deb |
| Debian | 13 | all | tiff | < 4.0.1-2 | tiff_4.0.1-2_all.deb |
Related
nessus
nessus
SuSE 11.1 Security Update : libtiff (SAT Patch Number 6106)
2012-04-18 00:00:00
Fedora 17 : libtiff-3.9.5-3.fc17 (2012-5463)
2012-04-12 00:00:00
SuSE 10 Security Update : tiff (ZYPP Patch Number 8055)
2012-04-18 00:00:00
openvas
openvas
Mandriva Update for libtiff MDVSA-2012:054 (libtiff)
2012-08-03 00:00:00
RedHat Update for libtiff RHSA-2012:0468-01
2012-04-11 00:00:00
CentOS Update for libtiff CESA-2012:0468 centos5
2012-07-30 00:00:00
oraclelinux
oraclelinux
libtiff security update
2012-04-10 00:00:00
debian
debian
[SECURITY] [DSA 2447-1] tiff security update
2012-04-04 20:00:29
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 3.9.6-alt1
2012-04-08 00:00:00
prion
prion
Integer overflow
2012-06-04 20:55:00
veracode
veracode
Remote Code Execution (RCE)
2018-10-04 04:47:21
centos
centos
libtiff security update
2012-04-10 21:10:32
slackware
slackware
[slackware-security] libtiff
2012-04-04 17:44:30
nvd
nvd
CVE-2012-1173
2012-06-04 20:55:03
redhat
redhat
(RHSA-2012:0468) Important: libtiff security update
2012-04-10 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: libtiff-3.9.5-3.fc17
2012-04-12 02:24:24
[SECURITY] Fedora 16 Update: libtiff-3.9.5-3.fc16
2012-04-22 03:27:04
[SECURITY] Fedora 15 Update: libtiff-3.9.5-3.fc15
2012-04-18 19:27:41
ubuntucve
ubuntucve
CVE-2012-1173
2012-04-04 00:00:00
CVE-2012-2113
2012-06-22 00:00:00
cvelist
cvelist
CVE-2012-1173
2012-06-04 20:00:00
zdi
zdi
LibTIFF TileSize Parsing Remote Code Execution Vulnerability
2012-03-13 00:00:00
cve
cve
CVE-2012-1173
2012-06-04 20:55:03
amazon
amazon
Important: libtiff
2012-04-30 14:43:00
securityvulns
securityvulns
[ MDVSA-2012:054 ] libtiff
2012-04-09 00:00:00
libtiff library integer overflow
2012-07-09 00:00:00
Apple Mac OS X multiple security vulnerabilities
2012-10-01 00:00:00
f5
f5
K15863 : Libtiff vulnerabilities CVE-2012-1173 and CVE-2012-2088
2015-01-30 00:00:00
SOL15863 - Libtiff vulnerabilities CVE-2012-1173 and CVE-2012-2088
2014-11-25 00:00:00
ubuntu
ubuntu
tiff vulnerabilities
2012-04-04 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2012-09-23 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.092 Low
EPSS
Percentile
94.7%
Related for DEBIANCVE:CVE-2012-1173