Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 638301 - (CVE-2010-3087) CVE-2010-3087 libtiff: DoS or possible arbitrary code execution via crafted TIFF image
CVE-2010-3087 libtiff: DoS or possible arbitrary code execution via crafted T...
Status: CLOSED CURRENTRELEASE
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
high Severity high
: ---
: ---
Assigned To: Red Hat Product Security
public=20100702,reported=20100719,sou...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2010-09-28 13:32 EDT by Vincent Danen
Modified: 2015-08-19 04:55 EDT (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-09-29 04:04:36 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Vincent Danen 2010-09-28 13:32:48 EDT 
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-3087 to
the following vulnerability:

Name: CVE-2010-3087
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3087
Assigned: 20100820
Reference: CONFIRM: http://support.novell.com/security/cve/CVE-2010-3087.html
Reference: CONFIRM: https://bugzilla.novell.com/show_bug.cgi?id=624215
Reference: SUSE:SUSE-SR:2010:017
Reference: URL: http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote
attackers to cause a denial of service (memory corruption) or possibly
execute arbitrary code via a crafted TIFF image.

The upstream bug report is here:

http://bugzilla.maptools.org/show_bug.cgi?id=2228
Comment 2 Tom Lane 2010-09-28 13:58:18 EDT 
I concur with Josh Bressers' comment in the upstream bug report that this is the same problem reported in upstream report 2140.  Which may mean that there's already a CVE for it ... weren't there CVEs for all the issues we fixed back in January?
Comment 3 Josh Bressers 2010-09-28 14:41:24 EDT 
This is fixed in our RHEL6 and Fedora packages via the libtiff-scanlinesize.patch patch from upstream bug 2140.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.