Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

Fedora Core 2 FEDORA-2004-576 Critical: LibTiff Buffer Overflow Exploit

fedora
Calendar Grey December 22, 2004
Dist Fedora Esm H88
Addresses multiple buffer overflow vulnerabilities in libtiff for Fedora Core 2, strengthening the system's defense against potential attacks.
Fix several buffer overflow problems that could be used as an exploit

Summary

The libtiff package contains a library of functions for manipulating

TIFF (Tagged Image File Format) image format files. TIFF is a widely

used file format for bitmapped images. TIFF files usually end in the

.tif extension and they are often quite large.

The libtiff package should be installed if you need to manipulate TIFF

format image files.

Fix several buffer overflow problems that could be used as an exploit.

Fixes the following security advisory: CAN-2004-1308

- fix some integer and buffer overflows (#143506)

a61d7738295e33663bd559e950a0ffe2 SRPMS/libtiff-3.5.7-21.fc2.src.rpm

0d4d9585b0efe3c2d6b12e192fba710e x86_64/libtiff-3.5.7-21.fc2.x86_64.rpm

3029673d8774199d44b86eb282be19ad x86_64/libtiff-devel-3.5.7-21.fc2.x86_64.rpm

ef55f622015d28d2a2904237c5990c60 x86_64/debug/libtiff-debuginfo-3.5.7-21.fc2.x86_64.rpm

d07013ed7c80369f9ad3beb6f6bd2148 x86_64/libtiff-3.5.7-21.fc2.i386.rpm

d07013ed7c80369f9ad3beb6f6bd2148 i386/libtiff-3.5.7-21.fc2.i386.rpm

c981efcef0a232cc627dec188bca76c4 i386/libtiff-devel-3.5.7-21.fc2.i386.rpm

9292074615b4a8cde6459aa8b19d7de1 i386/debug/libtiff-debuginfo-3.5.7-21.fc2.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

--fedora-announce-list mailing list

fedora-announce-list@redhat.com

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libtiff
Version: 3.5.7
Release: 21.fc2
Summary: A library of functions for manipulating TIFF format image

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here