Ubuntu CVE Tracker
Home
Main
Universe
Partner
CVE-2009-3296
Priority
Medium
Description
Multiple integer overflows in tiffread.c in CamlImages 2.2 might allow
remote attackers to execute arbitrary code via TIFF images containing large
width and height values that trigger heap-based buffer overflows.
References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3296
Notes
Package
Source:
advi
(
LP
Ubuntu
Debian
)
Upstream:
released
(1.6.0-15)
Ubuntu 22.04 LTS (Jammy Jellyfish)
:
not-affected
Patches:
Package
Source:
camlimages
(
LP
Ubuntu
Debian
)
Upstream:
released
(1:3.0.1-5)
Ubuntu 22.04 LTS (Jammy Jellyfish)
:
not-affected
(1:3.0.1-5)
Patches:
Vendor:
http://www.debian.org/security/2009/dsa-1912
More Information
Mitre
NVD
Launchpad
Debian
Updated
: 2022-02-10 23:38:42 UTC (commit
acb3d89ab51f1d5e5543fa993969c0eb13c71f04
)