Oval Definition:
oval:org.mitre.oval:def:24202
Revision Date
:
2014-07-07
Version
:
36
Title
:
RHSA-2014:0223: libtiff security update (Moderate)
Description
:
The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CESA-2014:0223
CVE-2013-1960
CVE-2013-1961
CVE-2013-4231
CVE-2013-4232
CVE-2013-4243
CVE-2013-4244
RHSA-2014:0223-00
Platform(s)
:
CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s)
:
libtiff
Definition Synopsis
Redhat 5 or Centos 5 release
The operating system installed on the system is Red Hat Enterprise Linux 5
OR
The operating system installed on the system is CentOS Linux 5.x
AND
Packages section
libtiff is earlier than 0:3.8.2-19.el5_10
OR
libtiff-devel is earlier than 0:3.8.2-19.el5_10
BACK