CVE-2010-2483

Priority
Description
The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers to
cause a denial of service (out-of-bounds read and application crash) via a
TIFF file with an invalid combination of SamplesPerPixel and Photometric
values.
Notes
mdeslaurcode not present in karmic and earlier
this is patch fix-ycbcr-oob-read.patch in natty
Package
Source: tiff (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Upstream:r1.63.2.5
More Information

Updated: 2020-03-18 22:03:29 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)