LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms, as used in tiff2rgba, attempts to process image data even when the required compression functionality is not configured, which allows remote attackers to cause a denial of service via a crafted TIFF image, related to "downsampled OJPEG input."
References
Link | Resource |
---|---|
http://secunia.com/advisories/40536 | Permissions Required Third Party Advisory |
http://www.redhat.com/support/errata/RHSA-2010-0520.html | Not Applicable |
http://www.vupen.com/english/advisories/2010/1761 | Broken Link |
https://bugzilla.redhat.com/show_bug.cgi?id=583081 | Exploit |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2010-07-01T18:00:00
Updated: 2010-07-15T09:00:00
Reserved: 2010-07-01T00:00:00
Link: CVE-2010-2598
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-07-02T12:43:53.080
Modified: 2016-11-08T14:56:50.803
Link: CVE-2010-2598
JSON object: View
Redhat Information
No data.
CWE