Back to search
CVE-2006-3464
Published: Aug 3, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving "unchecked arithmetic operations".
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
21501
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:136
vendor-advisory
x_refsource_MANDRIVA
21537
third-party-advisory
x_refsource_SECUNIA
21632
third-party-advisory
x_refsource_SECUNIA
GLSA-200608-07
vendor-advisory
x_refsource_GENTOO
21338
third-party-advisory
x_refsource_SECUNIA
USN-330-1
vendor-advisory
x_refsource_UBUNTU
http://support.avaya.com/elmodocs2/security/ASA-2006-166.htm
x_refsource_CONFIRM
1016628
vdb-entry
x_refsource_SECTRACK
DSA-1137
vendor-advisory
x_refsource_DEBIAN
21370
third-party-advisory
x_refsource_SECUNIA
21598
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0648
vendor-advisory
x_refsource_REDHAT
MDKSA-2006:137
vendor-advisory
x_refsource_MANDRIVA
ADV-2007-4034
vdb-entry
x_refsource_VUPEN
SUSE-SA:2006:044
vendor-advisory
x_refsource_SUSE
21290
third-party-advisory
x_refsource_SECUNIA
21274
third-party-advisory
x_refsource_SECUNIA
ADV-2006-3105
vdb-entry
x_refsource_VUPEN
RHSA-2006:0603
vendor-advisory
x_refsource_REDHAT
21304
third-party-advisory
x_refsource_SECUNIA
SSA:2006-230-01
vendor-advisory
x_refsource_SLACKWARE
https://issues.rpath.com/browse/RPL-558
x_refsource_CONFIRM
27832
third-party-advisory
x_refsource_SECUNIA
21346
third-party-advisory
x_refsource_SECUNIA
201331
vendor-advisory
x_refsource_SUNALERT
19286
vdb-entry
x_refsource_BID
21319
third-party-advisory
x_refsource_SECUNIA
21392
third-party-advisory
x_refsource_SECUNIA
21334
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10916
vdb-entry
signature
x_refsource_OVAL
22036
third-party-advisory
x_refsource_SECUNIA
2006-0044
vendor-advisory
x_refsource_TRUSTIX
103160
vendor-advisory
x_refsource_SUNALERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now