CVE-2013-1961

Publication date 2 May 2013

Last updated 24 July 2024


Ubuntu priority

Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.

Status

Package Ubuntu Release Status
tiff 14.04 LTS trusty
Fixed 4.0.2-4ubuntu3
13.10 saucy
Fixed 4.0.2-4ubuntu3
13.04 raring
Fixed 4.0.2-4ubuntu2.1
12.10 quantal
Fixed 4.0.2-1ubuntu2.2
12.04 LTS precise
Fixed 3.9.5-2ubuntu1.5
11.10 oneiric Ignored end of life
10.04 LTS lucid
Fixed 3.9.2-2ubuntu0.13
8.04 LTS hardy Ignored end of life
tiff3 14.04 LTS trusty Not in release
13.10 saucy Ignored end of life
13.04 raring Ignored end of life
12.10 quantal Ignored end of life
12.04 LTS precise Not in release
11.10 oneiric Not in release
10.04 LTS lucid Not in release
8.04 LTS hardy Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
tiff

References

Related Ubuntu Security Notices (USN)

Other references