CVE-2010-3087

Priority
Description
LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to
cause a denial of service (memory corruption) or possibly execute arbitrary
code via a crafted TIFF image.
Notes
mdeslaurthis is patch libtiff-scanlinesize.patch in natty
upstream bug says 3.8.x is not affected, and I couldn't
reproduce on karmic and earlier.
Package
Source: tiff (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Upstream:r1.50.2.13, r1.19.2.2 in libtiff/tif_strip.c
More Information

Updated: 2020-03-18 22:03:51 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)