CVE-2006-2120 (retired)

Priority
Description
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to
cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb
values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds
read.
Notes
Package
Source: tiff (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-10-09 07:03:00 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)