Lucene search
SuseSUSE-SA:2006:044HistoryAug 01, 2006 - 4:39 p.m.
possible remote code execution in libtiff
2006-08-0116:39:12
lists.opensuse.org
17
0.362 Low
EPSS
Percentile
97.2%
This update of libtiff is the result of a source-code audit done by Tavis Ormandy, Google Security Team. It fixes various bugs that can lead to denial-of-service conditions as well as to remote code execution while parsing a tiff image provided by an attacker.
Solution
No work-around known.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 10.1 | x86_64 | libtiff-32bit | < 3.8.2-5.9 | libtiff-32bit-3.8.2-5.9.x86_64.rpm |
| openSUSE | 10.1 | i586 | libtiff | < 3.8.2-5.9 | libtiff-3.8.2-5.9.i586.rpm |
| openSUSE | 10.0 | ppc | libtiff | < 3.7.3-2.6 | libtiff-3.7.3-2.6.ppc.rpm |
| openSUSE | 9.2 | x86_64 | libtiff | < 3.6.1-47.12 | libtiff-3.6.1-47.12.x86_64.rpm |
| SUSE Linux Enterprise Server | 10 | s390x | libtiff-devel-32bit | < 3.8.2-5.9 | libtiff-devel-32bit-3.8.2-5.9.s390x.rpm |
| openSUSE | 9.3 | i586 | libtiff | < 3.7.1-7.8 | libtiff-3.7.1-7.8.i586.rpm |
| openSUSE | 10.1 | ppc | libtiff-devel | < 3.8.2-5.9 | libtiff-devel-3.8.2-5.9.ppc.rpm |
| openSUSE | 10.1 | i586 | libtiff-devel | < 3.8.2-5.9 | libtiff-devel-3.8.2-5.9.i586.rpm |
| openSUSE | 10.0 | i586 | libtiff | < 3.7.3-2.6 | libtiff-3.7.3-2.6.i586.rpm |
| openSUSE | 9.2 | i586 | libtiff-devel | < 3.6.1-47.12 | libtiff-devel-3.6.1-47.12.i586.rpm |
Related
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2006-08-04 00:00:00
openvas
openvas
Debian Security Advisory DSA 1137-1 (tiff)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1137-1)
2008-01-17 00:00:00
Slackware Advisory SSA:2006-230-01 libtiff
2012-09-11 00:00:00
debian
debian
[SECURITY] [DSA 1137-1] New tiff packages fix several vulnerabilities
2006-08-02 18:28:12
nessus
nessus
GLSA-200608-07 : libTIFF: Multiple vulnerabilities
2006-08-07 00:00:00
Ubuntu 5.04 / 5.10 / 6.06 LTS : tiff vulnerabilities (USN-330-1)
2007-11-10 00:00:00
ubuntu
ubuntu
tiff vulnerabilities
2006-08-03 00:00:00
slackware
slackware
[slackware-security] libtiff
2006-08-18 08:00:57
osv
osv
tiff - several vulnerabilities
2006-08-02 00:00:00
centos
centos
libtiff security update
2006-08-04 19:40:44
libtiff security update
2006-08-03 03:41:45
kdegraphics security update
2006-08-28 13:40:53
securityvulns
securityvulns
seebug
seebug
Libtiff图形库多个安全漏洞
2006-11-04 00:00:00
Adobe Reader和Acrobat TIFF图像处理缓冲区溢出漏洞
2010-02-20 00:00:00
oraclelinux
oraclelinux
kdegraphics security update
2007-03-22 00:00:00
libtiff security update
2007-03-22 00:00:00
redhat
redhat
(RHSA-2006:0603) libtiff security update
2006-08-02 00:00:00
(RHSA-2006:0648) kdegraphics security update
2006-08-28 00:00:00
cvelist
cvelist
cve
cve
nvd
nvd
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:11:52
Arbitrary Code Execution
2020-04-10 00:11:53
Arbitrary Code Execution
2020-04-10 00:11:52
ubuntucve
ubuntucve
debiancve
debiancve
zdi
zdi