Red Hat Bugzilla – Bug 202690
CVE-2006-2193 tiff2pdf buffer overflow
Last modified: 2013-07-02 19:17:28 EDT
Fix needed for FC6
+++ This bug was initially created as a clone of Bug #194363 +++
tiff2pdf buffer overflow
A buffer overflow flaw has been found in tiff2pdf.
Thomas Biege told vendor-sec about this (it came from a colleague of
The code in question is as such:
sprintf(buffer, "\\%.3o", pdfstr[i]);
pdfstr[i] is signed char, therefore would write \37777777741
This issue also affects FC4
Fixed since libtiff-3.8.2-6.fc6.