FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2009-2347

This CVE name corresponds to:

Entered Topic
2010-06-16 tiff -- Multiple integer overflows

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2009-2347
Phase Assigned(20090707)

Description

Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a heap-based buffer overflow in the (a) cvt_whole_image function in tiff2rgba and (b) tiffcvt function in rgb2ycbcr.

References

Source Reference
BUGTRAQ 20090713 [oCERT-2009-012] libtiff tools integer overflows
MISC http://www.ocert.org/advisories/ocert-2009-012.html
CONFIRM http://article.gmane.org/gmane.linux.debian.devel.changes.unstable/178563/
CONFIRM http://bugzilla.maptools.org/show_bug.cgi?id=2079
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2347
DEBIAN DSA-1835
FEDORA FEDORA-2009-7724
FEDORA FEDORA-2009-7775
GENTOO GLSA-200908-03
GENTOO GLSA-201209-02
MANDRIVA MDVSA-2009:150
MANDRIVA MDVSA-2011:043
REDHAT RHSA-2009:1159
UBUNTU USN-801-1
BID 35652
OSVDB 55821
OSVDB 55822
OVAL oval:org.mitre.oval:def:10988
SECTRACK 1022539
SECUNIA 35817
SECUNIA 35811
SECUNIA 35866
SECUNIA 35883
SECUNIA 35911
SECUNIA 36194
SECUNIA 50726
VUPEN ADV-2009-1870
VUPEN ADV-2011-0621
XF libtiff-rgb2ycbcr-tiff2rgba-bo(51688)