CVE-2009-5022

Priority
Medium
Description
Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF
before 3.9.5 allows remote attackers to execute arbitrary code via a
crafted TIFF file.
References
Bugs
Notes
 mdeslaur> OJPEG is disabled on dapper, hardy and karmic
Package
Source: tiff (LP Ubuntu Debian)
Upstream:released (3.9.5)
More Information

Updated: 2016-03-23 03:35:29 UTC (commit 10817)