CVE-2013-4244
N/A
N/A
Summary
The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://rhn.redhat.com/errata/RHSA-2014-0223.html
- https://github.com/vadz/libtiff/commit/ce6841d9e41d621ba23cf18b190ee6a23b2cc833
- http://bugzilla.maptools.org/show_bug.cgi?id=2452
- https://bugzilla.redhat.com/show_bug.cgi?id=996468
References
- http://rhn.redhat.com/errata/RHSA-2014-0223.html
- https://github.com/vadz/libtiff/commit/ce6841d9e41d621ba23cf18b190ee6a23b2cc833
- http://bugzilla.maptools.org/show_bug.cgi?id=2452
- https://bugzilla.redhat.com/show_bug.cgi?id=996468
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.