CVE-2012-2088: Buffer Overflow
First published: Mon Jun 18 2012(Updated: )
A type-conversion flaw leading to a heap-based buffer overflow was found in the way libtiff reads certain tiled tiff files. An attacker could create a specially-crafted TIFF image that, when opened, could cause an application using libtiff to crash or, possibly, execute arbitrary code with the privileges of the user running the application. This issue does affects only version 3.x, but is fixed in upstream 4.x This bug has been split from: <a class="bz_bug_link bz_status_CLOSED bz_closed bz_public " title="CLOSED ERRATA - CVE-2012-2113 libtiff: integer overflow in tiff2pdf leading to heap-buffer overflow when reading a tiled tiff file" href="show_bug.cgi?id=810551">bug 810551</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libtiff Libtiff | <=3.9.4 | |
| Libtiff Libtiff | =3.4 | |
| Libtiff Libtiff | =3.4-beta18 | |
| Libtiff Libtiff | =3.4-beta24 | |
| Libtiff Libtiff | =3.4-beta28 | |
| Libtiff Libtiff | =3.4-beta29 | |
| Libtiff Libtiff | =3.4-beta31 | |
| Libtiff Libtiff | =3.4-beta32 | |
| Libtiff Libtiff | =3.4-beta34 | |
| Libtiff Libtiff | =3.4-beta35 | |
| Libtiff Libtiff | =3.4-beta36 | |
| Libtiff Libtiff | =3.4-beta37 | |
| Libtiff Libtiff | =3.5.1 | |
| Libtiff Libtiff | =3.5.2 | |
| Libtiff Libtiff | =3.5.3 | |
| Libtiff Libtiff | =3.5.4 | |
| Libtiff Libtiff | =3.5.5 | |
| Libtiff Libtiff | =3.5.6 | |
| Libtiff Libtiff | =3.5.6-beta | |
| Libtiff Libtiff | =3.5.7 | |
| Libtiff Libtiff | =3.5.7-alpha | |
| Libtiff Libtiff | =3.5.7-alpha2 | |
| Libtiff Libtiff | =3.5.7-alpha3 | |
| Libtiff Libtiff | =3.5.7-alpha4 | |
| Libtiff Libtiff | =3.5.7-beta | |
| Libtiff Libtiff | =3.6.0 | |
| Libtiff Libtiff | =3.6.0-beta | |
| Libtiff Libtiff | =3.6.0-beta2 | |
| Libtiff Libtiff | =3.6.1 | |
| Libtiff Libtiff | =3.7.0 | |
| Libtiff Libtiff | =3.7.0-alpha | |
| Libtiff Libtiff | =3.7.0-beta | |
| Libtiff Libtiff | =3.7.0-beta2 | |
| Libtiff Libtiff | =3.7.1 | |
| Libtiff Libtiff | =3.7.2 | |
| Libtiff Libtiff | =3.7.3 | |
| Libtiff Libtiff | =3.7.4 | |
| Libtiff Libtiff | =3.8.0 | |
| Libtiff Libtiff | =3.8.1 | |
| Libtiff Libtiff | =3.8.2 | |
| Libtiff Libtiff | =3.9 | |
| Libtiff Libtiff | =3.9.0 | |
| Libtiff Libtiff | =3.9.0-beta | |
| Libtiff Libtiff | =3.9.1 | |
| Libtiff Libtiff | =3.9.2 | |
| Libtiff Libtiff | =3.9.2-5.2.1 | |
| Libtiff Libtiff | =3.9.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=810551
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=832866
- https://rhn.redhat.com/errata/RHSA-2012-1054.html
- https://bugzilla.redhat.com/show_bug.cgi?id=832864
- http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00010.html
- http://rhn.redhat.com/errata/RHSA-2012-1054.html
- http://secunia.com/advisories/49686
- http://secunia.com/advisories/50726
- http://security.gentoo.org/glsa/glsa-201209-02.xml
- http://support.apple.com/kb/HT6162
- http://support.apple.com/kb/HT6163
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:101
- http://www.securityfocus.com/bid/54270
- https://hermes.opensuse.org/messages/15083566
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/tags
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-2088
- vendor/libtiff
- canonical/libtiff libtiff
- version/libtiff libtiff/3.9.4
- version/libtiff libtiff/3.4
- version/libtiff libtiff/3.4-beta18
- version/libtiff libtiff/3.4-beta24
- version/libtiff libtiff/3.4-beta28
- version/libtiff libtiff/3.4-beta29
- version/libtiff libtiff/3.4-beta31
- version/libtiff libtiff/3.4-beta32
- version/libtiff libtiff/3.4-beta34
- version/libtiff libtiff/3.4-beta35
- version/libtiff libtiff/3.4-beta36
- version/libtiff libtiff/3.4-beta37
- version/libtiff libtiff/3.5.1
- version/libtiff libtiff/3.5.2
- version/libtiff libtiff/3.5.3
- version/libtiff libtiff/3.5.4
- version/libtiff libtiff/3.5.5
- version/libtiff libtiff/3.5.6
- version/libtiff libtiff/3.5.6-beta
- version/libtiff libtiff/3.5.7
- version/libtiff libtiff/3.5.7-alpha
- version/libtiff libtiff/3.5.7-alpha2
- version/libtiff libtiff/3.5.7-alpha3
- version/libtiff libtiff/3.5.7-alpha4
- version/libtiff libtiff/3.5.7-beta
- version/libtiff libtiff/3.6.0
- version/libtiff libtiff/3.6.0-beta
- version/libtiff libtiff/3.6.0-beta2
- version/libtiff libtiff/3.6.1
- version/libtiff libtiff/3.7.0
- version/libtiff libtiff/3.7.0-alpha
- version/libtiff libtiff/3.7.0-beta
- version/libtiff libtiff/3.7.0-beta2
- version/libtiff libtiff/3.7.1
- version/libtiff libtiff/3.7.2
- version/libtiff libtiff/3.7.3
- version/libtiff libtiff/3.7.4
- version/libtiff libtiff/3.8.0
- version/libtiff libtiff/3.8.1
- version/libtiff libtiff/3.8.2
- version/libtiff libtiff/3.9
- version/libtiff libtiff/3.9.0
- version/libtiff libtiff/3.9.0-beta
- version/libtiff libtiff/3.9.1
- version/libtiff libtiff/3.9.2
- version/libtiff libtiff/3.9.2-5.2.1
- version/libtiff libtiff/3.9.3