{
  "threat_severity" : "Low",
  "public_date" : "2010-06-22T00:00:00Z",
  "bugzilla" : {
    "description" : "libtiff: unknown tag handling assertion failure",
    "id" : "611890",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=611890"
  },
  "cvss" : {
    "cvss_base_score" : "4.3",
    "cvss_scoring_vector" : "AV:N/AC:M/Au:N/C:N/I:N/A:P",
    "status" : "draft"
  },
  "details" : [ "LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481." ],
  "statement" : "Not vulnerable. This issue did not affect the versions of libtiff as shipped with Red Hat Enterprise Linux 3, 4, or 5.",
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2010-2631\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-2631" ],
  "name" : "CVE-2010-2631",
  "csaw" : false
}