Oval Definition:oval:org.mitre.oval:def:21264
Revision Date:2014-02-24Version:12
Title:RHSA-2012:0468: libtiff security update (Important)
Description:Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2012:0468
CVE-2012-1173
RHSA-2012:0468-02
Platform(s):CentOS Linux 5
CentOS Linux 6
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):libtiff
Definition Synopsis
  • Operation system section
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • libtiff is earlier than 0:3.8.2-14.el5_8
  • OR libtiff-devel is earlier than 0:3.8.2-14.el5_8
  • Operation system section
  • Redhat 6 or Centos 6 release
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages section
  • libtiff is earlier than 0:3.9.4-5.el6_2
  • OR libtiff-static is earlier than 0:3.9.4-5.el6_2
  • OR libtiff-devel is earlier than 0:3.9.4-5.el6_2
    • BACK