Your submission was sent successfully! Close

CVE-2009-3296

Published: 20 October 2009

Multiple integer overflows in tiffread.c in CamlImages 2.2 might allow remote attackers to execute arbitrary code via TIFF images containing large width and height values that trigger heap-based buffer overflows.

Priority

Medium

Status

Package Release Status
advi
Launchpad, Ubuntu, Debian
Upstream
Released (1.6.0-15)
camlimages
Launchpad, Ubuntu, Debian
Upstream
Released (1:3.0.1-5)
Patches:
Vendor: http://www.debian.org/security/2009/dsa-1912