Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA-200908-03 Normal: LibTIFF Remote Code Execution Alert

gentoo
Calendar Grey August 7, 2009
Dist Gentoo Esm H88
Gentoo Linux Security Update regarding libJPEG tackles vulnerabilities that may lead to unauthorized access through serious input validation errors.
Multiple boundary checking vulnerabilities in libTIFF may allow for the remote execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200908-03 https://security.gentoo.org/ Severity: Normal Title: libTIFF: User-assisted execution of arbitrary code Date: August 07, 2009 Bugs: #276339, #276988 ID: 200908-03

Synopsis ======= Multiple boundary checking vulnerabilities in libTIFF may allow for the remote execution of arbitrary code.
Background ========= libTIFF provides support for reading and manipulating TIFF (Tagged Image File Format) images.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/tiff < 3.8.2-r8 >= 3.8.2-r8
========== Two vulnerabilities have been reported in libTIFF:
* wololo reported a buffer underflow in the LZWDecodeCompat() func...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo security issue remote code execution libTIFF boundary flaw

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo security issue remote code execution libTIFF boundary flaw

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here