Bugtraq: rPSA-2006-0142-1 libtiff

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

rPSA-2006-0142-1 libtiff

From: "Justin M. Forbes" <jmforbes () rpath com>
Date: Tue, 01 Aug 2006 18:40:12 -0400

rPath Security Advisory: 2006-0142-1
Published: 2006-08-01
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Remote User Deterministic Unauthorized Access
Updated Versions:
    libtiff=/conary.rpath.com () rpl:devel//1/3.8.2-3-0.1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3460
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3461
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3462
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3463
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3464
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3465
    https://issues.rpath.com/browse/RPL-558

Description:
    Previous versions of the libtiff package are vulnerable to several
    vulnerabilities which enable attackers to subvert user accounts
    if the users attempt to view intentionally malformed TIFF files.

By Date By Thread

Current thread:

rPSA-2006-0142-1 libtiff Justin M. Forbes (Aug 02)