TROYANOSYVIRUS
Volver a CVEs

CVE-2012-4564

N/A

Descripcion

ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory allocation, and a heap-based buffer overflow.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado11/11/2012
Ultima modificacion4/11/2025
Fuentenvd
Avistamientos honeypot0

Productos afectados

canonical:ubuntu_linuxdebian:debian_linuxlibtiff:libtiffopensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_eusredhat:enterprise_linux_serverredhat:enterprise_linux_workstation

Referencias

http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2012-1590.html(secalert@redhat.com)
http://secunia.com/advisories/51133(secalert@redhat.com)
http://www.debian.org/security/2012/dsa-2575(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/11/02/3(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/11/02/7(secalert@redhat.com)
http://www.osvdb.org/86878(secalert@redhat.com)
http://www.securityfocus.com/bid/56372(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-1631-1(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=871700(secalert@redhat.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79750(secalert@redhat.com)
http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2012-1590.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/51133(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2012/dsa-2575(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/11/02/3(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/11/02/7(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/86878(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/56372(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-1631-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=871700(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79750(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.