Debian Security Advisory DSA 626-1 (tiff) Network Vulnerability

Summary

The remote host is missing an update to tiff announced via advisory DSA 626-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20626-1

Insight

Dmitry V. Levin discovered a buffer overflow in libtiff, the Tag Image File Format library for processing TIFF graphics files. Upon reading a TIFF file it is possible to crash the application, and maybe also to execute arbitrary code. For the stable distribution (woody) this problem has been fixed in version 3.5.5-6.woody5. For the unstable distribution (sid) this problem has been fixed in version 3.6.1-5. We recommend that you upgrade your libtiff package.

Severity

Classification

CVE CVE-2004-1183

CVSS	Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1155-1 (sendmail)
Debian Security Advisory DSA 1041-1 (abc2ps)
Debian Security Advisory DSA 1027-1 (mailman)
Debian Security Advisory DSA 1112-1 (mysql-dfsg-4.1)
Debian Security Advisory DSA 035-1 (man2html)

Take action and discover your vulnerabilities