CVE-2009-5022

Priority
Medium
Description
Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF
before 3.9.5 allows remote attackers to execute arbitrary code via a
crafted TIFF file.
References
Bugs
Notes
 mdeslaur> OJPEG is disabled on dapper, hardy and karmic
Package
Source: tiff (LP Ubuntu Debian)
Upstream:released (3.9.5)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:37:31 UTC (commit 9756)