CVE-2013-4243
EPSS 18.7%tiff - security update
發布日:2013/9/10修改日:2026/4/28
描述
Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.
受影響套件(3)
- Debian/tifffrom 0, < 4.0.3-9
- Debian/tifffrom 0, < 3.9.4-5+squeeze11
- Debian/tifffrom 0, < 4.0.2-6+deb7u3