libtiff: CVE-2013-4243 - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Baogen Shang <baogen.shang@windriver.com>	2013-12-05 17:52:16 -0600
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2013-12-10 11:36:23 +0000
commit	47388363f69bfbf5ed1816a9367627182ee10e88 (patch)
tree	76f888f84a418c6050948edf43a2d0d08ef7eca7 /oe-init-build-env-memres
parent	bd4a878815e7033b1114940e2a5a16568322655b (diff)
download	openembedded-core-contrib-47388363f69bfbf5ed1816a9367627182ee10e88.tar.gz

libtiff: CVE-2013-4243

cve description: Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4243 Signed-off-by: Baogen Shang <baogen.shang@windriver.com> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'oe-init-build-env-memres')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: