LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481. References: http://bugzilla.maptools.org/show_bug.cgi?id=2210
It seems this CVE was assigned based on the following comment in the upstream bug report: http://bugzilla.maptools.org/show_bug.cgi?id=2210#c3 It was added in response to the Red Hat bug: https://bugzilla.redhat.com/show_bug.cgi?id=603699 Upstream bug report #2210 contains patch to address issues related to handling of unknown tags, which could lead to various libtiff crashes, which got CVEs assigned (CVE-2010-2481, CVE-2010-2630 and CVE-2010-2631). This particular vector did not affect libtiff packages in Red Hat Enterprise Linux 3, 4 and 5 (see bug #603699, comment #0). Patch is included in libtiff-3.9.4-1 Fedora packages. Statement: Not vulnerable. This issue did not affect the versions of libtiff as shipped with Red Hat Enterprise Linux 3, 4, or 5.