Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3401

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-3401
Last Modified 29 May 2013 11:16:48
Published 13 Aug 2012 04:55:08
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-3401

Summary

The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers a heap-based buffer overflow.

Vulnerable Systems

Application

  • Libtiff 3.4

  • Libtiff 3.5.1

  • Libtiff 3.5.2

  • Libtiff 3.5.3

  • Libtiff 3.5.4

  • Libtiff 3.5.5

  • Libtiff 3.5.6

  • Libtiff 3.5.7

  • Libtiff 3.6.0

  • Libtiff 3.6.1

  • Libtiff 3.7.0

  • Libtiff 3.7.1

  • Libtiff 3.7.2

  • Libtiff 3.7.3

  • Libtiff 3.7.4

  • Libtiff 3.8.0

  • Libtiff 3.8.1

  • Libtiff 3.8.2

  • Libtiff 3.9

  • Libtiff 3.9.0

  • Libtiff 3.9.1

  • Libtiff 3.9.2

  • Libtiff 3.9.2-5.2.1

  • Libtiff 3.9.3

  • Libtiff 3.9.4

  • Libtiff 4.0

  • Libtiff 4.0.1

  • Libtiff 4.0.2


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=837577

MISC - https://bugzilla.redhat.com/attachment.cgi?id=596457

XF - libtiff-t2preadtiffinit-bo(77088)

UBUNTU - USN-1511-1

MLIST - [oss-security] 20120719 Re: tiff2pdf: Heap-based buffer overflow due to improper initialization of T2P context struct pointer

MLIST - [oss-security] 20120719 tiff2pdf: Heap-based buffer overflow due to improper initialization of T2P context struct pointer

SECUNIA - 50007

SECUNIA - 49938

OSVDB - 84090

MISC - http://libjpeg-turbo.svn.sourceforge.net/viewvc/libjpeg-turbo?view=revision&revision=830

SUSE - openSUSE-SU-2012:0955

DEBIAN - DSA-2552

BID - 54601

REDHAT - RHSA-2012:1590

MANDRIVA - MDVSA-2012:127

GENTOO - GLSA-201209-02

SECUNIA - 50726

CONFIRM - http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

Related Patches

SUN119900-16 Solaris 10 SPARC: GNOME 2.6.0: GNOME libtiff - library for reading and writing TIFF Patch (Rev 3)

Red Hat 2012:1590-01 RHSA Moderate: libtiff security update for RHEL 5 x86

Novell SUSE 2012:6579 libtiff-devel security update for SLE 11 SP1 i586

Novell SUSE 2012:6579 libtiff-devel security update for SLE 11 SP1 x86_64

Novell SUSE 2012:8230 libtiff security update for SLE 10 SP4 i586

Novell SUSE 2012:8230 libtiff security update for SLE 10 SP4 x86_64


Last Updated: 27 May 2016 10:51:40