PublicDate: 2006-04-25 23:02:00 UTC
Candidate: CVE-2006-2024
References:
 https://ubuntu.com/security/notices/USN-277-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2024
Description:
 Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent
 attackers to cause a denial of service via a TIFF image that triggers
 errors in (1) the TIFFFetchAnyArray function in (a) tif_dirread.c; (2)
 certain "codec cleanup methods" in (b) tif_lzw.c, (c) tif_pixarlog.c, and
 (d) tif_zip.c; (3) and improper restoration of setfield and getfield
 methods in cleanup functions within (e) tif_jpeg.c, tif_pixarlog.c, (f)
 tif_fax3.c, and tif_zip.c.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_tiff: released (3.7.4-1ubuntu3.2)
edgy_tiff: not-affected
feisty_tiff: not-affected
upstream_tiff: needs-triage