Oval Definition:	oval:org.mitre.oval:tst:37555
Comment: libtiff is earlier than 0:3.6.1-12.el4_7.2 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14341 State: oval:org.mitre.oval:ste:10910 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9788 V Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in libtiff 3.8.2 and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TIFF file with a DocumentName tag that contains UTF-8 characters, which triggers the overflow when a character is sign extended to an integer that produces more digits than expected in an sprintf call. 2013-04-29 oval:org.mitre.oval:def:11489 V Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code. 2013-04-29
BACK