Red Hat Bugzilla – Bug 144186
CAN-2004-1183 libtiff integer overflow
Last modified: 2007-11-30 17:07:15 EST
*** This bug has been split off bug 143577 ***
------- Original comment by Josh Bressers (Security Response Team) on 2004.12.22
Dmitry V. Levin has reported to vendor-sec an issue with tiffdump.
The issue appears to be an integer overflow which could lead to a
There is no patch yet. More work is being done on this issue. I'll
post more information when it's available.
This issue should also affect RHEL2.1
I have built libtiff-3.6.1-8 into dist-4E-errata-candidate containing
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.