Oval Definition:	oval:org.mitre.oval:def:23728
Revision Date: 2014-05-26 Version: 15 Title: ELSA-2012:0468: libtiff security update (Important) Description: Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2012-1173 ELSA-2012:0468-02 Platform(s): Oracle Linux 5 Oracle Linux 6 Product(s): libtiff Definition Synopsis rpm test Oracle Linux 5.x AND rpm test libtiff is earlier than 0:3.8.2-14.el5_8 OR libtiff-devel is earlier than 0:3.8.2-14.el5_8 OR rpm test Oracle Linux 6.x AND rpm test libtiff is earlier than 0:3.9.4-5.el6_2 OR libtiff-static is earlier than 0:3.9.4-5.el6_2 OR libtiff-devel is earlier than 0:3.9.4-5.el6_2
BACK