CVE-2013-4244

Published: Sep 28, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2014:0223

vendor-advisory

x_refsource_REDHAT

https://github.com/vadz/libtiff/commit/ce6841d9e41d621ba23cf18b190ee6a23b2cc833

x_refsource_CONFIRM

http://bugzilla.maptools.org/show_bug.cgi?id=2452

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=996468

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-4244

Description

Affected Products

References