FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0886

This CVE name corresponds to:

Entered Topic
2004-10-13 tiff -- multiple integer overflows

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2004-0886 at cve.mitre.org

Details

Type Candidate
Name CVE-2004-0886
Phase Assigned(20040922)

Description

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.

References

Source Reference
CONFIRM http://www.kde.org/info/security/advisory-20041209-2.txt
CONECTIVA CLA-2004:888
DEBIAN DSA-567
MANDRAKE MDKSA-2004:109
MANDRAKE MDKSA-2005:052
REDHAT RHSA-2004:577
REDHAT RHSA-2005:354
REDHAT RHSA-2005:021
SUNALERT 101677
SUNALERT 201072
SUSE SUSE-SA:2004:038
TRUSTIX 2004-0054
OPENPKG OpenPKG-SA-2004.043
CERT-VN VU#687568
CIAC P-015
BID 11406
OVAL oval:org.mitre.oval:def:100116
OVAL oval:org.mitre.oval:def:9907
SECTRACK 1011674
SECUNIA 12818
XF libtiff-bo(17715)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.