CVE-2006-3459

Impact:
Important
Public Date:
2006-08-01
Bugzilla:
199111: CVE-2006-3459 Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

The MITRE CVE dictionary describes this issue as:

Multiple stack-based buffer overflows in the TIFF library (libtiff) before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, including a large tdir_count value in the TIFFFetchShortPair function in tif_dirread.c.

Find out more about CVE-2006-3459 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (libtiff) RHSA-2006:0603 2006-08-02
Red Hat Enterprise Linux 4 (libtiff) RHSA-2006:0603 2006-08-02
Red Hat Enterprise Linux 3 (kdegraphics) RHSA-2006:0648 2006-08-28
Red Hat Enterprise Linux 3 (libtiff) RHSA-2006:0603 2006-08-02
Red Hat Enterprise Linux 2.1 (kdegraphics) RHSA-2006:0648 2006-08-28
Last Modified

CVE description copyright © 2017, The MITRE Corporation