FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

tiff -- multiple integer overflows

Affected packages
tiff <= 3.6.1_2
linux-tiff < 3.6.1
pdflib < 6.0.1
pdflib-perl < 6.0.1
gdal < 1.2.1_2
ivtools < 1.2.3
paraview < 2.4.3
fractorama < 1.6.7_1
0 < iv
0 < ja-iv
0 < ja-libimg

Details

VuXML ID 3897a2f8-1d57-11d9-bc4a-000c41e2cdad
Discovery 2004-10-13
Entry 2004-10-13
Modified 2006-06-08

Dmitry V. Levin discovered numerous integer overflow bugs in libtiff. Most of these bugs are related to memory management, and are believed to be exploitable for arbitrary code execution.

References

CERT/CC Vulnerability Note 687568
CVE Name CVE-2004-0886
URL http://www.idefense.com/application/poi/display?id=173&type=vulnerabilities