Debian: DSA-2589-1 Moderate: TIFF Buffer Overflow Threat and Update
debian
December 16, 2012
The tiff library for handling TIFF image files contained a stack-based buffer overflow, potentially allowing attackers who can submit such files to a vulnerable system to execute a...
Summary
The tiff library for handling TIFF image files contained a stack-based
buffer overflow, potentially allowing attackers who can submit such
files to a vulnerable system to execute arbitrary code.
For the stable distribution (squeeze), this problem has been fixed in
version 3.9.4-5+squeeze8.
For the testing distribution (wheezy) and the unstable distribution
(sid), this problem has been fixed in version 4.0.2-1 of the tiff
package, and version 3.9.6-10 of the tiff3 package.
We recommend that you upgrade your tiff packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Package: tiff
CVE ID: CVE-2012-5581
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!