Red Hat Bugzilla – Bug 134850
CAN-2004-0886 multiple integer overflows in libtiff
Last modified: 2007-11-30 17:07:04 EST
Dimitry Levin reported to vendor-sec a number of integer overflows in
libtiff. It is possible that a malicious image could be used to crash
an application linked with libtiff.
This issue also affects RHEL2.1
This issue is embargoed until Oct 13.
Fixes are in 3.5.5-17 (RHEL2.1) and 3.5.7-20.1 (RHEL3)
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.