CVE-2009-2285

EPSS 16.8%

tiff - several vulnerabilities

Published: 7/1/2009Modified: 4/28/2026

Description

Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327.

Affected packages (2)

Debian/tifffrom 0, < 3.8.2-12
Debian/tifffrom 0, < 3.8.2-7+etch3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-2285