FreeBSD Local Security Checks : FreeBSD Ports: tiff

Price/Feature Summary | Order | New Vulnerabilities | Confidentiality | Vulnerability Search

Vulnerability Search		Search 61204 CVE descriptions and 32582 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.54465

Category: FreeBSD Local Security Checks

Title: FreeBSD Ports: tiff

Summary: FreeBSD Ports: tiff

Description: The remote host is missing an update to the system
as announced in the referenced advisory.

The following packages are affected:
tiff
linux-tiff
pdflib
pdflib-perl
fractorama
gdal
iv
ivtools
ja-iv
ja-libimg
paraview

CVE-2005-1544
Stack-based buffer overflow in libTIFF before 1.53 allows remote
attackers to execute arbitrary code via a TIFF file with a malformed
BitsPerSample tag.

Solution:
Update your system with the appropriate patches or
software upgrades.

http://bugzilla.remotesensing.org/show_bug.cgi?id=843
http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml
http://www.remotesensing.org/libtiff/v3.7.3.html
http://www.vuxml.org/freebsd/68222076-010b-11da-bc08-0001020eed82.html

Cross-Ref: BugTraq ID: 13585
Common Vulnerability Exposure (CVE) ID: CVE-2005-1544
http://bugzilla.remotesensing.org/show_bug.cgi?id=843
Debian Security Information: DSA-755 (Google Search)
http://www.debian.org/security/2005/dsa-755
http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml
http://bugs.gentoo.org/show_bug.cgi?id=91584
http://www.mandriva.com/security/advisories?name=MDKSA-2006:042
SCO Security Bulletin: SCOSA-2005.34
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.34/SCOSA-2005.34.txt
SCO Security Bulletin: SCOSA-2006.3
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.3/SCOSA-2006.3.txt
http://www.ubuntu.com/usn/usn-130-1
http://www.securityfocus.com/bid/13585
http://www.osvdb.org/16350
http://securitytracker.com/id?1013944
http://secunia.com/advisories/15320
http://secunia.com/advisories/16872
http://secunia.com/advisories/18943
http://secunia.com/advisories/18289
XForce ISS Database: libtiff-bitspersample-bo(20533)
http://xforce.iss.net/xforce/xfdb/20533

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

New User Registration
Email:

UserID:

Passwd:

Please email me your monthly newsletters, informing the latest services, improvements & surveys.

Please email me a vulnerability test announcement whenever a new test is added.

Privacy

Registered User Login

UserID:

Passwd:

Forgot userid or passwd?

Email/Userid:

Test ID:	1.3.6.1.4.1.25623.1.0.54465
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: tiff
Summary:	FreeBSD Ports: tiff
Description:	The remote host is missing an update to the system as announced in the referenced advisory. The following packages are affected: tiff linux-tiff pdflib pdflib-perl fractorama gdal iv ivtools ja-iv ja-libimg paraview CVE-2005-1544 Stack-based buffer overflow in libTIFF before 1.53 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag. Solution: Update your system with the appropriate patches or software upgrades. http://bugzilla.remotesensing.org/show_bug.cgi?id=843 http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml http://www.remotesensing.org/libtiff/v3.7.3.html http://www.vuxml.org/freebsd/68222076-010b-11da-bc08-0001020eed82.html
Cross-Ref:	BugTraq ID: 13585 Common Vulnerability Exposure (CVE) ID: CVE-2005-1544 http://bugzilla.remotesensing.org/show_bug.cgi?id=843 Debian Security Information: DSA-755 (Google Search) http://www.debian.org/security/2005/dsa-755 http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml http://bugs.gentoo.org/show_bug.cgi?id=91584 http://www.mandriva.com/security/advisories?name=MDKSA-2006:042 SCO Security Bulletin: SCOSA-2005.34 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.34/SCOSA-2005.34.txt SCO Security Bulletin: SCOSA-2006.3 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.3/SCOSA-2006.3.txt http://www.ubuntu.com/usn/usn-130-1 http://www.securityfocus.com/bid/13585 http://www.osvdb.org/16350 http://securitytracker.com/id?1013944 http://secunia.com/advisories/15320 http://secunia.com/advisories/16872 http://secunia.com/advisories/18943 http://secunia.com/advisories/18289 XForce ISS Database: libtiff-bitspersample-bo(20533) http://xforce.iss.net/xforce/xfdb/20533
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com