|Bugzilla:||695887: CVE-2010-4665 libtiff tiffdump integer overflow|
The MITRE CVE dictionary describes this issue as:
Integer overflow in the ReadDirectory function in tiffdump.c in tiffdump in LibTIFF before 3.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted TIFF file containing a directory data structure with many directory entries.
This flaw has already been fixed in Red Hat Enterprise Linux 4 and 5 by a patch included in RHSA-2010:0519.
CVSS v2 metrics
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat security errata
|Red Hat Enterprise Linux version 4 (libtiff)||RHSA-2010:0519||July 08, 2010|
|Red Hat Enterprise Linux version 5 (libtiff)||RHSA-2010:0519||July 08, 2010|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.