CVE-2010-2065
published 2010-06-24CVE-2010-2065: Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute…
PriorityP431medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
5.57%
91.9th percentile
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 3.9.4-1 (bookworm) | tiff 3.9.4-1 (bookworm) |
| libtiff | libtiff | <= 3.9.2 | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
vendor_ubuntu6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
tiff vulnerabilities
vendor_ubuntu·2010-06-21·CVSS 6.8
CVE-2010-1411 [MEDIUM] tiff vulnerabilities
Title: tiff vulnerabilities
Summary: Multiple integer overflows leading to crashes or arbitrary code execution.
Kevin Finisterre discovered that the TIFF library did not correctly handle
certain image structures. If a user or automated system were tricked
into opening a specially crafted TIFF image, a remote attacker could
execute arbitrary code with user privileges, or crash the application,
leading to a denial of service. (CVE-2010-1411)
Dan Rosenberg and Sauli Pahlman discovered multiple flaws in the TIFF
library. If a user or automated system were into opening a specially
crafted TIFF image, a remote attacker could execute arbitrary code
with user privileges, or crash the application, leading to a denial
of service. (Only Ubuntu 10.04 LTS was affected.) (CVE-2010-2065,
CVE-2010-2067
Red Hat
libtiff: TIFFroundup() integer overflow in TIFFFillStrip()
vendor_redhat·2010-06-15·CVSS 6.8
CVE-2010-2065 [MEDIUM] CWE-190 libtiff: TIFFroundup() integer overflow in TIFFFillStrip()
libtiff: TIFFroundup() integer overflow in TIFFFillStrip()
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
Statement: Not vulnerable. These issues did not affect the versions of libtiff as shipped with Red Hat Enterprise Linux 3, 4, or 5.
Package: libtiff (Red Hat Enterprise Linux 4) - Not affected
Package: libtiff (Red Hat Enterprise Linux 5) - Not affected
Package: libtiff (Red Hat Enterprise Linux 6) - Affected
Debian
CVE-2010-2065: tiff - Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote ...
vendor_debian·2010·CVSS 6.8
CVE-2010-2065 [MEDIUM] CVE-2010-2065: tiff - Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote ...
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
Scope: local
bookworm: resolved (fixed in 3.9.4-1)
bullseye: resolved (fixed in 3.9.4-1)
forky: resolved (fixed in 3.9.4-1)
sid: resolved (fixed in 3.9.4-1)
trixie: resolved (fixed in 3.9.4-1)
GHSA
GHSA-jgr3-673f-qm3h: Integer overflow in the TIFFroundup macro in LibTIFF before 3
ghsa_unreviewed·2022-05-17
CVE-2010-2065 [MEDIUM] GHSA-jgr3-673f-qm3h: Integer overflow in the TIFFroundup macro in LibTIFF before 3
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
OSV
CVE-2010-2065: Integer overflow in the TIFFroundup macro in LibTIFF before 3
osv·2010-06-24·CVSS 6.8
CVE-2010-2065 [MEDIUM] CVE-2010-2065: Integer overflow in the TIFFroundup macro in LibTIFF before 3
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
No detection rules found.
No public exploits indexed.
http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010http://marc.info/?l=oss-security&m=127731610612908&w=2http://secunia.com/advisories/40181http://secunia.com/advisories/40381http://secunia.com/advisories/50726http://security.gentoo.org/glsa/glsa-201209-02.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424http://www.mandriva.com/security/advisories?name=MDVSA-2011:043http://www.remotesensing.org/libtiff/v3.9.3.htmlhttp://www.ubuntu.com/usn/USN-954-1http://www.vupen.com/english/advisories/2010/1638http://www.vupen.com/english/advisories/2011/0204http://www.vupen.com/english/advisories/2011/0621https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/589565https://bugzilla.redhat.com/show_bug.cgi?id=601274http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010http://marc.info/?l=oss-security&m=127731610612908&w=2http://secunia.com/advisories/40181http://secunia.com/advisories/40381http://secunia.com/advisories/50726http://security.gentoo.org/glsa/glsa-201209-02.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424http://www.mandriva.com/security/advisories?name=MDVSA-2011:043http://www.remotesensing.org/libtiff/v3.9.3.htmlhttp://www.ubuntu.com/usn/USN-954-1http://www.vupen.com/english/advisories/2010/1638http://www.vupen.com/english/advisories/2011/0204http://www.vupen.com/english/advisories/2011/0621https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/589565https://bugzilla.redhat.com/show_bug.cgi?id=601274
2010-06-24
Published