Red Hat Customer Portal

Skip to main content

CVE-2004-1308

Impact:
Important
Public Date:
2004-12-21

The MITRE CVE dictionary describes this issue as:

Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow.

Find out more about CVE-2004-1308 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (kdegraphics) RHSA-2005:021 2005-04-12
Red Hat Enterprise Linux 2.1 (libtiff) RHSA-2005:019 2005-01-13
Red Hat Enterprise Linux 3 (kdegraphics) RHSA-2005:021 2005-04-12
Red Hat Enterprise Linux 3 (libtiff) RHSA-2005:019 2005-01-13
Red Hat Enterprise Linux 4 (libtiff) RHSA-2005:035 2005-02-15