QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-2026

Back to search

CVE-2006-2026

Published: Apr 25, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Double free vulnerability in tif_jpeg.c in libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers errors related to "setfield/getfield methods in cleanup functions."

VendorProductVersions

n/a

n/a

affected
n/a

References

ADV-2006-1563
vdb-entry
x_refsource_VUPEN
20210
third-party-advisory
x_refsource_SECUNIA
19949
third-party-advisory
x_refsource_SECUNIA
103099
vendor-advisory
x_refsource_SUNALERT
USN-277-1
vendor-advisory
x_refsource_UBUNTU
GLSA-200605-17
vendor-advisory
x_refsource_GENTOO
20667
third-party-advisory
x_refsource_SECUNIA
19936
third-party-advisory
x_refsource_SECUNIA
19964
third-party-advisory
x_refsource_SECUNIA
201332
vendor-advisory
x_refsource_SUNALERT
2006-0024
vendor-advisory
x_refsource_TRUSTIX
20345
third-party-advisory
x_refsource_SECUNIA
DSA-1054
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:11389
vdb-entry
signature
x_refsource_OVAL
RHSA-2006:0425
vendor-advisory
x_refsource_REDHAT
19838
third-party-advisory
x_refsource_SECUNIA
20021
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:082
vendor-advisory
x_refsource_MANDRIVA
19897
third-party-advisory
x_refsource_SECUNIA
20023
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2006:009
vendor-advisory
x_refsource_SUSE
17733
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2006-2026 - Security Vulnerability | QwikSec