TROYANOSYVIRUS
Back to CVEs

CVE-2012-4564

N/A

Description

ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory allocation, and a heap-based buffer overflow.

CVE Details

CVSS v3.1 ScoreN/A
Published11/11/2012
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0

Affected Products

canonical:ubuntu_linuxdebian:debian_linuxlibtiff:libtiffopensuse:opensuseredhat:enterprise_linux_desktopredhat:enterprise_linux_eusredhat:enterprise_linux_serverredhat:enterprise_linux_workstation

References

http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2012-1590.html(secalert@redhat.com)
http://secunia.com/advisories/51133(secalert@redhat.com)
http://www.debian.org/security/2012/dsa-2575(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/11/02/3(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/11/02/7(secalert@redhat.com)
http://www.osvdb.org/86878(secalert@redhat.com)
http://www.securityfocus.com/bid/56372(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-1631-1(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=871700(secalert@redhat.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79750(secalert@redhat.com)
http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2012-1590.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/51133(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2012/dsa-2575(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/11/02/3(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/11/02/7(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/86878(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/56372(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-1631-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=871700(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79750(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.