The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.remotesensing.org/libtiff/v3.9.4.html http://www.ocert.org/advisories/ocert-2009-012.html http://www.vuxml.org/freebsd/8816bf3a-7929-11df-bcce-0018f3e2eb82.html

The following packages are affected: tiff linux-tiff CVE-2009-2347 Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a heap-based buffer overflow in the (a) cvt_whole_image function in tiff2rgba and (b) tiffcvt function in rgb2ycbcr.