Rapid7 Vulnerability & Exploit Database

SuSE 8.1 security update for libtiff

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

SuSE 8.1 security update for libtiff

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
11/01/2004
Created
07/25/2018
Added
11/01/2004
Modified
11/18/2015

Description

The system is missing one or more SuSE security patches. This update fixes several security related buffer overflow problems. - CAN-2004-0803: Chris Evans reported multiple buffer overflows in the RLE decoding routines. - CAN-2004-0804: A division by zero was found by Matthias Claasen. - CAN-2004-0886: Several integer overflows in the allocation routines were found by Dmitry Levin. - CAN-2004-0929: iDEFENSE Security reported Bufferoverflows in the OJPEG support. OJPEG (old JPEG) support was disabled. - Two denial of service problems possible by using handcrafted images were fixed.

Solution(s)

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;