OVAL Reference oval:org.mitre.oval:def:24133

Oval Definition:

oval:org.mitre.oval:def:24133

Revision Date:	2014-07-07	Version:	41
Title:	RHSA-2014:0222: libtiff security update (Moderate)
Description:	The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CESA-2014:0222 CVE-2010-2596 CVE-2013-1960 CVE-2013-1961 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 RHSA-2014:0222-00
Platform(s):	CentOS Linux 6 Red Hat Enterprise Linux 6	Product(s):	libtiff
Definition Synopsis
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section libtiff is earlier than 0:3.9.4-10.el6_5 OR libtiff-static is earlier than 0:3.9.4-10.el6_5 OR libtiff-devel is earlier than 0:3.9.4-10.el6_5