|
|
Family: Debian Local Security Checks --> Category: infos
[DSA1091] DSA-1091-1 tiff Vulnerability Scan
Vulnerability Scan Summary
DSA-1091-1 tiff
Detailed Explanation for this Vulnerability Test
Several problems have been discovered in the TIFF library. The Common
Vulnerabilities and Exposures project identifies the following issues:
SuSE discovered a buffer overflow in the conversion of TIFF files
into PDF documents which could be exploited when tiff2pdf is used
e.g. in a printer filter.
The tiffsplit command from the TIFF library contains a buffer
overflow in the commandline handling which could be exploited when
the program is executed automatically on unknown filenames.
For the old stable distribution (woody) this problem has been fixed in
version 3.5.5-7woody2.
For the stable distribution (sarge) this problem has been fixed in
version 3.7.2-5.
For the unstable distribution (sid) this problem has been fixed in
version 3.8.2-4.
We recommend that you upgrade your tiff packages.
Solution : http://www.debian.org/security/2006/dsa-1091
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
