Candidate: CVE-2009-3296
PublicDate: 2009-10-20 17:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3296
Description:
 Multiple integer overflows in tiffread.c in CamlImages 2.2 might allow
 remote attackers to execute arbitrary code via TIFF images containing large
 width and height values that trigger heap-based buffer overflows.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_advi:
upstream_advi: released (1.6.0-15)
dapper_advi: ignored (reached end-of-life)
hardy_advi: released (1.6.0-13ubuntu0.1)
intrepid_advi: needed (reached end-of-life)
jaunty_advi: released (1.6.0-13+lenny2build0.9.04.1)
karmic_advi: released (1.6.0-14ubuntu0.1)
lucid_advi: not-affected (1.6.0-15)
maverick_advi: not-affected
devel_advi: not-affected

Patches_camlimages:
 vendor: http://www.debian.org/security/2009/dsa-1912
upstream_camlimages: released (1:3.0.1-5)
dapper_camlimages: ignored (reached end-of-life)
hardy_camlimages: released (1:2.2.0-2ubuntu2.1)
intrepid_camlimages: released (1:2.2.0-3ubuntu0.1)
jaunty_camlimages: released (1:2.2.0-4+lenny3build0.9.04.1)
karmic_camlimages: released (1:3.0.1-3ubuntu0.1)
lucid_camlimages: not-affected (1:3.0.1-5)
maverick_camlimages: not-affected (1:3.0.1-5)
devel_camlimages: not-affected (1:3.0.1-5)