Oval Definition:	oval:org.mitre.oval:def:12818
Revision Date: 2014-06-23 Version: 20 Title: DSA-2256-1 tiff -- buffer overflow Description: Tavis Ormandy discovered that the Tag Image File Format library is vulnerable to a buffer overflow triggered by a crafted OJPEG file which allows for a crash and potentially execution of arbitrary code. The oldstable distribution is not affected by this problem. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-5022 DSA-2256-1 Platform(s): Debian GNU/kFreeBSD 6.0 Debian GNU/Linux 6.0 Product(s): tiff Definition Synopsis Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND Installed architecture is all AND tiff DPKG is earlier than 3.9.4-5+squeeze2
BACK