CVE-2009-3296

描述

Multiple integer overflows in tiffread.c in CamlImages 2.2 might allow remote attackers to execute arbitrary code via TIFF images containing large width and height values that trigger heap-based buffer overflows.

受影響套件(2)

• Debian/advifrom 0, < 1.6.0-15
• Debian/camlimagesfrom 0, < 1:3.0.1-5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-3296