正文

LibTiff Tiff图像标头除零拒绝服务漏洞

admin V管理员 /2021年 /0 评论 /9 阅读

1231

此篇文章发布距今已超过1279天，您需要注意文章的内容或图片是否可用！

漏洞信息详情

LibTiff Tiff图像标头除零拒绝服务漏洞

CNNVD编号：CNNVD-200508-025
危害等级：中危-->
危害等级：中危
CVE编号： CVE-2005-2452
漏洞类型：边界条件错误
发布时间： 2005-08-03
威胁类型：远程
更新时间： 2006-11-30
厂商： libtiff
漏洞来源： Vladimir Nadvornik...

漏洞简介

libtiff 3.7.0及其早前版本允许远程攻击者借助于其值为零\"YCbCr subsampling\" 的TIFF图像标头造成拒绝服务(应用程序崩溃)，这使得在(1) tif_strip.c 和(2) tif_tile.c产生除零错误。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

KDE KDE 3.2

Mandriva kdegraphics-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-common-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-common-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kdvi-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kdvi-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kfax-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kfax-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kghostview-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kghostview-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kiconedit-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kiconedit-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kooka-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kooka-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpaint-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpaint-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpdf-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpdf-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpovmodeler-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kpovmodeler-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kruler-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kruler-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-ksnapshot-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-ksnapshot-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-ksvg-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-ksvg-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kuickshow-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kuickshow-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kview-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-kview-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-mrmlsearch-3.2-15.8.C30mdk.i586.rpm

Corporate 3.0

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva kdegraphics-mrmlsearch-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva lib64kdegraphics0-common-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva lib64kdegraphics0-common-devel-3.2-15.8.C30mdk.x86_64.rpm

Corporate 3.0/X86_64

http://www1.mandrivalinux.com/en/ftp.php3

Mandriva lib64kdegraphics0-kooka-3.2-15.8.C30mdk.x86

参考网址

来源: UBUNTU

名称: USN-156-1

链接:http://www.ubuntulinux.org/support/documentation/usn/usn-156-1

来源: MISC

链接:https://bugzilla.ubuntu.com/show_bug.cgi?id=12008

来源: BID

名称: 14417

链接:http://www.securityfocus.com/bid/14417

来源: MANDRAKE

名称: MDKSA-2005:144

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:144

来源: MANDRAKE

名称: MDKSA-2005:143

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:143

来源: MANDRAKE

名称: MDKSA-2005:142

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:142

来源: SECUNIA

名称: 16486

链接:http://secunia.com/advisories/16486

来源: SECUNIA

名称: 16266

链接:http://secunia.com/advisories/16266

受影响实体

Libtiff Libtiff:3.6.1
Libtiff Libtiff:3.5.7
Libtiff Libtiff:3.5.5

补丁

暂无

相关阅读

发表评论取消回复

评论列表（暂无评论，9人围观）

还没有评论，来说两句吧...

目录[+]

微信二维码

微信二维码

支付宝二维码