Debian Security Advisory DSA 626-1 (tiff) Network Vulnerability

Summary

The remote host is missing an update to tiff announced via advisory DSA 626-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20626-1

Insight

Dmitry V. Levin discovered a buffer overflow in libtiff, the Tag Image File Format library for processing TIFF graphics files. Upon reading a TIFF file it is possible to crash the application, and maybe also to execute arbitrary code. For the stable distribution (woody) this problem has been fixed in version 3.5.5-6.woody5. For the unstable distribution (sid) this problem has been fixed in version 3.6.1-5. We recommend that you upgrade your libtiff package.

Severity

Classification

CVE CVE-2004-1183
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 037-1 (nextaw, xaw3d, xaw95)
Debian Security Advisory DSA 1036-1 (bsdgames)
Debian Security Advisory DSA 1023-1 (kaffeine)
Debian Security Advisory DSA 1152-1 (trac)
Debian Security Advisory DSA 1143-1 (dhcp)

Take action and discover your vulnerabilities