Red Hat Bugzilla – Bug 189974
CVE-2006-2120 libtiff DoS
Last modified: 2007-11-30 17:07:24 EST
A bug was fixed upstream where a malformed tiff image can cause libtiff to crash
due to an OOB memory read.
Created attachment 128248 [details]
Patch extracted from upstream CVS
It's likely this issue affect RHEL2 and RHEL3 (I've not had time to check source
only affects RHEL4, tif_color.c is new in 3.6
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.