CVE-2010-2233
published 2010-07-02CVE-2010-2233: tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.50%
90.3th percentile
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 3.9.4-2 (bookworm) | tiff 3.9.4-2 (bookworm) |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hxrv-xxfr-vpw3: tif_getimage
ghsa_unreviewed·2022-05-17
CVE-2010-2233 [HIGH] CWE-20 GHSA-hxrv-xxfr-vpw3: tif_getimage
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
OSV
CVE-2010-2233: tif_getimage
osv·2010-07-02·CVSS 7.5
CVE-2010-2233 [HIGH] CVE-2010-2233: tif_getimage
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
Red Hat
libtiff: incorrect type extension for negative toskew values on 64bit platforms
vendor_redhat·2010-06-10·CVSS 7.5
CVE-2010-2233 [HIGH] CWE-681 libtiff: incorrect type extension for negative toskew values on 64bit platforms
libtiff: incorrect type extension for negative toskew values on 64bit platforms
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
Statement: Not vulnerable. This issue did not affect the versions of libtiff as shipped with Red Hat Enterprise Linux 3, 4, or 5.
Debian
CVE-2010-2233: tiff - tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageM...
vendor_debian·2010·CVSS 7.5
CVE-2010-2233 [HIGH] CVE-2010-2233: tiff - tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageM...
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
Scope: local
bookworm: resolved (fixed in 3.9.4-2)
bullseye: resolved (fixed in 3.9.4-2)
forky: resolved (fixed in 3.9.4-2)
sid: resolved (fixed in 3.9.4-2)
trixie: resolved (fixed in 3.9.4-2)
No detection rules found.
No public exploits indexed.
http://bugzilla.maptools.org/show_bug.cgi?id=2207http://marc.info/?l=oss-security&m=127731610612908&w=2http://secunia.com/advisories/40422http://secunia.com/advisories/50726http://security.gentoo.org/glsa/glsa-201209-02.xmlhttp://securitytracker.com/id?1024150http://www.remotesensing.org/libtiff/v3.9.4.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=583081https://bugzilla.redhat.com/show_bug.cgi?id=607198http://bugzilla.maptools.org/show_bug.cgi?id=2207http://marc.info/?l=oss-security&m=127731610612908&w=2http://secunia.com/advisories/40422http://secunia.com/advisories/50726http://security.gentoo.org/glsa/glsa-201209-02.xmlhttp://securitytracker.com/id?1024150http://www.remotesensing.org/libtiff/v3.9.4.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=583081https://bugzilla.redhat.com/show_bug.cgi?id=607198
2010-07-02
Published