Debian Security Advisory DSA 2084-1 (tiff) Network Vulnerability

Summary

The remote host is missing an update to tiff announced via advisory DSA 2084-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202084-1

Insight

Kevin Finisterre discovered that several integer overflows in the TIFF library could lead to the execution of arbitrary code. For the stable distribution (lenny), this problem has been fixed in version 3.8.2-11.3. For the unstable distribution (sid), this problem has been fixed in version 3.9.4-1. We recommend that you upgrade your tiff packages.

Severity

Classification

CVE CVE-2010-1411

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1100-1 (wv2)
Debian Security Advisory DSA 114-1 (gnujsp)
Debian Security Advisory DSA 023-1 (inn2)
Debian Security Advisory DSA 1014-1 (firebird2)
Debian Security Advisory DSA 1000-1 (libapreq2-perl)

Take action and discover your vulnerabilities