Lucene search
GoogleOSV:DSA-2210-1HistoryApr 03, 2011 - 12:00 a.m.
tiff - several
2011-04-0300:00:00
Google
osv.dev
20
0.239 Low
EPSS
Percentile
96.6%
Several vulnerabilities were discovered in the TIFF manipulation and
conversion library:
- CVE-2011-0191
A buffer overflow allows to execute arbitrary code or cause
a denial of service via a crafted TIFF image with JPEG encoding.
This issue affects the Debian 5.0 Lenny package only. - CVE-2011-0192
A buffer overflow allows to execute arbitrary code or cause
a denial of service via a crafted TIFF Internet Fax image
file that has been compressed using CCITT Group 4 encoding. - CVE-2011-1167
Heap-based buffer overflow in the thunder (aka ThunderScan)
decoder allows to execute arbitrary code via a TIFF file that
has an unexpected BitsPerSample value.
For the oldstable distribution (lenny), these problems have been
fixed in version 3.8.2-11.4.
For the stable distribution (squeeze), these problems have been
fixed in version 3.9.4-5+squeeze1.
For the testing distribution, the first two problems have been fixed
in version 3.9.4-8, the last problem will be fixed soon.
For the unstable distribution (sid), these problems have been fixed
in version 3.9.4-9.
We recommend that you upgrade your tiff packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tiff | eq | 3.8.2-11 | |
| tiff | eq | 3.8.2-11.2 | |
| tiff | eq | 3.8.2-11.3 |
References
Related
debian
debian
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
[SECURITY] [DSA 2210-1] tiff security update
2011-04-03 12:23:08
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
openvas
openvas
Debian Security Advisory DSA 2210-1 (tiff)
2011-05-12 00:00:00
Debian: Security Advisory (DSA-2210-1)
2011-05-12 00:00:00
Fedora Update for libtiff FEDORA-2011-3836
2011-04-11 00:00:00
nessus
nessus
Debian DSA-2210-1 : tiff - several vulnerabilities
2011-04-04 00:00:00
SuSE 10 Security Update : libtiff (ZYPP Patch Number 7474)
2011-12-13 00:00:00
Fedora 14 : libtiff-3.9.4-4.fc14 (2011-3836)
2011-04-11 00:00:00
oraclelinux
oraclelinux
libtiff security and bug fix update
2011-03-28 00:00:00
libtiff security update
2011-03-03 00:00:00
slackware
slackware
[slackware-security] libtiff
2011-04-11 21:57:06
fedora
fedora
[SECURITY] Fedora 14 Update: libtiff-3.9.4-4.fc14
2011-04-08 23:19:15
[SECURITY] Fedora 15 Update: libtiff-3.9.5-1.fc15
2011-04-26 16:24:05
[SECURITY] Fedora 14 Update: libtiff-3.9.5-1.fc14
2011-04-19 19:26:31
altlinux
altlinux
Security fix for the ALT Linux 5 package libtiff version 3.9.5-alt1.M50P.1
2011-09-29 00:00:00
Security fix for the ALT Linux 5 package libtiff version 3.9.5-alt1
2011-04-13 00:00:00
Security fix for the ALT Linux 10 package libtiff version 3.9.5-alt1
2011-04-13 00:00:00
redhat
redhat
(RHSA-2011:0392) Important: libtiff security and bug fix update
2011-03-28 00:00:00
(RHSA-2011:0318) Important: libtiff security update
2011-03-02 00:00:00
nvd
nvd
centos
centos
libtiff security update
2011-03-31 15:03:00
libtiff security update
2011-03-03 03:27:08
securityvulns
securityvulns
libtiff buffer overflow
2011-03-23 00:00:00
ZDI-11-107: Libtiff ThunderCode Decoder THUNDER_2BITDELTAS Remote Code Execution Vulnerability
2011-03-23 00:00:00
APPLE-SA-2011-10-12-2 Apple TV Software Update 4.4
2011-10-16 00:00:00
zdi
zdi
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:54:05
Arbitrary Code Execution
2020-04-10 00:55:01
debiancve
debiancve
prion
prion
Buffer overflow
2011-03-03 20:00:00
Heap overflow
2011-03-28 16:55:00
Buffer overflow
2011-03-03 20:00:00
cvelist
cvelist
ubuntucve
ubuntucve
cve
cve
ubuntu
ubuntu
tiff vulnerability
2011-04-04 00:00:00
tiff vulnerabilities
2011-03-07 00:00:00
tiff regression
2011-03-15 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2012-09-23 00:00:00
suse
suse
remote denial of service in kernel
2011-05-20 15:12:45
remote denial of service, potential remote code in kernel
2011-06-29 16:32:28
remote denial of service, local privilege in kernel
2011-04-28 11:17:40