CVE-2009-5022

EPSS 16.6%

tiff - buffer overflow

發布日:2011/5/3修改日:2026/4/28

也稱為:DEBIAN-CVE-2009-5022

描述

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

受影響套件(2)

Debian/tifffrom 0, < 3.9.5-1
Debian/tifffrom 0, < 3.9.4-5+squeeze2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-5022