CVE-2010-2443

The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
VendorProductVersion
libtifflibtiff
𝑥
≤ 3.9.2
libtifflibtiff
3.4
libtifflibtiff
3.4:beta18
libtifflibtiff
3.4:beta24
libtifflibtiff
3.4:beta28
libtifflibtiff
3.4:beta29
libtifflibtiff
3.4:beta31
libtifflibtiff
3.4:beta32
libtifflibtiff
3.4:beta34
libtifflibtiff
3.4:beta35
libtifflibtiff
3.4:beta36
libtifflibtiff
3.4:beta37
libtifflibtiff
3.5.1
libtifflibtiff
3.5.2
libtifflibtiff
3.5.3
libtifflibtiff
3.5.4
libtifflibtiff
3.5.5
libtifflibtiff
3.5.6
libtifflibtiff
3.5.6:beta
libtifflibtiff
3.5.7
libtifflibtiff
3.5.7:alpha
libtifflibtiff
3.5.7:alpha2
libtifflibtiff
3.5.7:alpha3
libtifflibtiff
3.5.7:alpha4
libtifflibtiff
3.5.7:beta
libtifflibtiff
3.6.0
libtifflibtiff
3.6.0:beta
libtifflibtiff
3.6.0:beta2
libtifflibtiff
3.6.1
libtifflibtiff
3.7.0
libtifflibtiff
3.7.0:alpha
libtifflibtiff
3.7.0:beta
libtifflibtiff
3.7.0:beta2
libtifflibtiff
3.7.1
libtifflibtiff
3.7.2
libtifflibtiff
3.7.3
libtifflibtiff
3.7.4
libtifflibtiff
3.8.0
libtifflibtiff
3.8.1
libtifflibtiff
3.8.2
libtifflibtiff
3.9
libtifflibtiff
3.9.0
libtifflibtiff
3.9.0:beta
libtifflibtiff
3.9.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tiff
bullseye (security)
4.2.0-1+deb11u5
fixed
bullseye
4.2.0-1+deb11u5
fixed
bookworm
4.5.0-6+deb12u1
fixed
bookworm (security)
4.5.0-6+deb12u1
fixed
sid
4.5.1+git230720-5
fixed
trixie
4.5.1+git230720-5
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tiff
maverick
not-affected
lucid
Fixed 3.9.2-2ubuntu0.3
released
karmic
not-affected
jaunty
ignored
hardy
not-affected
dapper
not-affected
References
http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010
http://marc.info/?l=oss-security&m=127736307002102&w=2
http://marc.info/?l=oss-security&m=127781315415896&w=2
http://secunia.com/advisories/50726
http://security.gentoo.org/glsa/glsa-201209-02.xml
http://www.remotesensing.org/libtiff/v3.9.3.html
http://www.vupen.com/english/advisories/2011/0204
https://bugs.launchpad.net/ubuntu/lucid/+source/tiff/+bug/589145
http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010
http://marc.info/?l=oss-security&m=127736307002102&w=2
http://marc.info/?l=oss-security&m=127781315415896&w=2
http://secunia.com/advisories/50726
http://security.gentoo.org/glsa/glsa-201209-02.xml
http://www.remotesensing.org/libtiff/v3.9.3.html
http://www.vupen.com/english/advisories/2011/0204
https://bugs.launchpad.net/ubuntu/lucid/+source/tiff/+bug/589145