oval:org.mitre.oval:def:13452

Definition Id: oval:org.mitre.oval:def:13452

Oval ID:	oval:org.mitre.oval:def:13452
Title:	USN-1085-2 -- tiff regression
Description:	USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sauli Pahlman discovered that the TIFF library incorrectly handled invalid td_stripbytecount fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. Sauli Pahlman discovered that the TIFF library incorrectly handled TIFF files with an invalid combination of SamplesPerPixel and Photometric values. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. This issue only affected Ubuntu 10.10. Nicolae Ghimbovschi discovered that the TIFF library incorrectly handled invalid ReferenceBlackWhite values. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. Sauli Pahlman discovered that the TIFF library incorrectly handled certain default fields. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. It was discovered that the TIFF library incorrectly validated certain data types. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service. It was discovered that the TIFF library incorrectly handled downsampled JPEG data. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. It was discovered that the TIFF library incorrectly handled certain JPEG data. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service. This issue only affected Ubuntu 6.06 LTS, 8.04 LTS and 9.10. It was discovered that the TIFF library incorrectly handled certain TIFF FAX images. If a user or automated system were tricked into opening a specially crafted TIFF FAX image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service
Family:	unix	Class:	patch
Reference(s):	USN-1085-2 CVE-2010-2482 CVE-2010-2595 CVE-2010-2597 CVE-2010-2598 CVE-2010-2630 CVE-2010-3087 CVE-2011-0191	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 10.10 Ubuntu 10.04 Ubuntu 9.10 Ubuntu 6.06	Product(s):	tiff
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc AND Packages section libtiff4 DPKG is earlier than 3.8.2-7ubuntu3.8 AND libtiff-opengl DPKG is earlier than 3.8.2-7ubuntu3.8 AND libtiffxx0c2 DPKG is earlier than 3.8.2-7ubuntu3.8 AND libtiff-tools DPKG is earlier than 3.8.2-7ubuntu3.8 AND libtiff4-dev DPKG is earlier than 3.8.2-7ubuntu3.8 OR Release section Ubuntu 10.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND libtiff-doc DPKG is earlier than 3.9.4-2ubuntu0.2 OR Architecture depended section Supported architectures section Installed architecture is powerpc AND Installed architecture is armel AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section libtiff4 DPKG is earlier than 3.9.4-2ubuntu0.2 AND libtiff-opengl DPKG is earlier than 3.9.4-2ubuntu0.2 AND libtiffxx0c2 DPKG is earlier than 3.9.4-2ubuntu0.2 AND libtiff-tools DPKG is earlier than 3.9.4-2ubuntu0.2 AND libtiff4-dev DPKG is earlier than 3.9.4-2ubuntu0.2 OR Release section Ubuntu 10.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND libtiff-doc DPKG is earlier than 3.9.2-2ubuntu0.5 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is armel AND Packages section libtiff4 DPKG is earlier than 3.9.2-2ubuntu0.5 AND libtiff-opengl DPKG is earlier than 3.9.2-2ubuntu0.5 AND libtiffxx0c2 DPKG is earlier than 3.9.2-2ubuntu0.5 AND libtiff-tools DPKG is earlier than 3.9.2-2ubuntu0.5 AND libtiff4-dev DPKG is earlier than 3.9.2-2ubuntu0.5 OR Release section Ubuntu 9.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND libtiff-doc DPKG is earlier than 3.8.2-13ubuntu0.5 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is lpia AND Packages section libtiff4 DPKG is earlier than 3.8.2-13ubuntu0.5 AND libtiff-opengl DPKG is earlier than 3.8.2-13ubuntu0.5 AND libtiffxx0c2 DPKG is earlier than 3.8.2-13ubuntu0.5 AND libtiff-tools DPKG is earlier than 3.8.2-13ubuntu0.5 AND libtiff4-dev DPKG is earlier than 3.8.2-13ubuntu0.5 OR Release section Ubuntu 6.06 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is powerpc AND Packages section libtiff4 DPKG is earlier than 3.7.4-1ubuntu3.10 AND libtiff-opengl DPKG is earlier than 3.7.4-1ubuntu3.10 AND libtiffxx0c2 DPKG is earlier than 3.7.4-1ubuntu3.10 AND libtiff-tools DPKG is earlier than 3.7.4-1ubuntu3.10 AND libtiff4-dev DPKG is earlier than 3.7.4-1ubuntu3.10

Definition Id: oval:org.mitre.oval:def:13319

Oval ID:	oval:org.mitre.oval:def:13319
Title:	Ubuntu 6.06 is installed
Description:	Ubuntu 6.06 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:6.06	Version:	3
Platform(s):	Ubuntu 6.06	Product(s):
Definition Synopsis:
Ubuntu 6.06 is installed
Referenced By:
oval:org.mitre.oval:def:13452

Definition Id: oval:org.mitre.oval:def:13089

Oval ID:	oval:org.mitre.oval:def:13089
Title:	Ubuntu 10.04 is installed
Description:	Ubuntu 10.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:10.04	Version:	5
Platform(s):	Ubuntu 10.04	Product(s):
Definition Synopsis:
Ubuntu 10.04 is installed
Referenced By:
oval:org.mitre.oval:def:13452

Definition Id: oval:org.mitre.oval:def:13134

Oval ID:	oval:org.mitre.oval:def:13134
Title:	Ubuntu 10.10 is installed
Description:	Ubuntu 10.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:10.10	Version:	3
Platform(s):	Ubuntu 10.10	Product(s):
Definition Synopsis:
Ubuntu 10.10 is installed
Referenced By:
oval:org.mitre.oval:def:13452

Definition Id: oval:org.mitre.oval:def:13079

Oval ID:	oval:org.mitre.oval:def:13079
Title:	Ubuntu 9.10 is installed
Description:	Ubuntu 9.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:9.10	Version:	5
Platform(s):	Ubuntu 9.10	Product(s):
Definition Synopsis:
Ubuntu 9.10 is installed
Referenced By:
oval:org.mitre.oval:def:13452

Definition Id: oval:org.mitre.oval:def:13250

Oval ID:	oval:org.mitre.oval:def:13250
Title:	Ubuntu 8.04 is installed
Description:	Ubuntu 8.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.04	Version:	3
Platform(s):	Ubuntu 8.04	Product(s):
Definition Synopsis:
Ubuntu 8.04 is installed
Referenced By:
oval:org.mitre.oval:def:13452

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0412s

Facebook rss twitter linkedin mail