Launchpad CVE tracker

CVE 2010-2067

Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file.

See the

CVE page on Mitre.org for more details.

References

MISC: http://labs.idefense.c...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://osvdb.org/65676
MISC: http://www.vupen.com/e...
MISC: http://security.gentoo...
MISC: https://bugzilla.redha...
MISC: http://slackware.com/s...
MISC: http://lists.opensuse....
MISC: http://www.ubuntu.com/...
MISC: http://marc.info/?l=os...
MISC: http://bugzilla.maptoo...
MISC: http://www.remotesensi...

Launchpad.net

CVE 2010-2067

Related bugs

References