CERTA-2004-AVI-345

Vulnerability from certfr_avis - Published: 2004-10-15 - Updated: 2004-12-06

None

Description

Le paquetage Libtiff comprend une bibliothèque et un ensemble d'outils pour le traitement des images au format TIFF (Tag Image File Format).

De multiples vulnérabilités de type débordement de mémoire sont présentes dans la bibliothèque Libtiff.

Ces vulnérabilités peuvent être exploitées par un utilisateur mal intentionné afin de réaliser un déni de service ou exécuter du code arbitraire sur le système vulnérable.

Solution

Se référer aux bulletins de sécurité de l'éditeur (cf. section Documentation) pour l'obtention des correctifs.

Libtiff v3.6.1 et versions antérieures.

Le paquetage wxGTK2 et la bibliothèque PDFlib réutilisant du code de libtiff sont également vulnérables.

Impacted products
Vendor Product Description
References

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLibtiff v3.6.1 et versions ant\u00e9rieures.  \u003cP\u003eLe paquetage wxGTK2 et la biblioth\u00e8que PDFlib r\u00e9utilisant du  code de libtiff sont \u00e9galement vuln\u00e9rables.\u003c/P\u003e\u003c/p\u003e",
  "content": "## Description\n\nLe paquetage Libtiff comprend une biblioth\u00e8que et un ensemble d\u0027outils\npour le traitement des images au format TIFF (Tag Image File Format).\n\n  \n\nDe multiples vuln\u00e9rabilit\u00e9s de type d\u00e9bordement de m\u00e9moire sont\npr\u00e9sentes dans la biblioth\u00e8que Libtiff.\n\nCes vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es par un utilisateur mal\nintentionn\u00e9 afin de r\u00e9aliser un d\u00e9ni de service ou ex\u00e9cuter du code\narbitraire sur le syst\u00e8me vuln\u00e9rable.\n\n## Solution\n\nSe r\u00e9f\u00e9rer aux bulletins de s\u00e9curit\u00e9 de l\u0027\u00e9diteur (cf. section\nDocumentation) pour l\u0027obtention des correctifs.\n",
  "cves": [],
  "initial_release_date": "2004-10-15T00:00:00",
  "last_revision_date": "2004-12-06T00:00:00",
  "links": [
    {
      "title": "Annonce de PDFlib 5.0.4p1 le 15 novembre 2004 :",
      "url": "http://www.pdflib.com/products/pdflib/info/PDFlib-5.0.4p1-changes.txt"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-567 du 15 octobre 2004 :",
      "url": "http://www.debian.org/security/2004/dsa-567"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200412-02 du 05 decembre    2004 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200412-02.xml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandrake MDKSA-2004:111 du 21 octobre    2004 :",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:111"
    },
    {
      "title": "Site de Libtiff :",
      "url": "http://www.libtiff.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Red Hat RHSA-2004:577 du 22 octobre    2004 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2004-577.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200410-11 du 13 octobre    2004 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200410-11.xml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 FreeBSD \"Tiff - RLE decoder heap    overflows\" du 13 octobre 2004 :",
      "url": "http://www.vuxml.org/freebsd"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 d\u0027Apple du 02 d\u00e9cembre 2004 :",
      "url": "http://docs.info.apple.com/article.html?artnum=61798"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SuSE-SA:2004:038 du 22 octobre    2004 :",
      "url": "http://www.suse.de/de/security/2004_38_libtiff.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 d\u0027iDEFENSE \"Novell SuSE Linux libTIFF    heap overflow vulnerability\" du 22 octobre 2004 :",
      "url": "http://www.idefense.com/application/poi/display?id=154\u0026type=vulnerabilities"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de Chris Evans :",
      "url": "http://scary.beasts.org/security/CESA-2004-006.txt"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandrake MDKSA-2004:109 du 19 octobre    2004 :",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:109"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 FreeBSD \"Tiff - multiple integer    overflows\" du 13 octobre 2004 :",
      "url": "http://www.vuxml.org/freebsd"
    }
  ],
  "reference": "CERTA-2004-AVI-345",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2004-10-15T00:00:00.000000"
    },
    {
      "description": "ajout r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 DSA-567 de Debian. Ajout r\u00e9f\u00e9rence CVE CAN-2004-0804.",
      "revision_date": "2004-10-18T00:00:00.000000"
    },
    {
      "description": "ajout r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 MDKSA-2004:109 de Mandrake.",
      "revision_date": "2004-10-20T00:00:00.000000"
    },
    {
      "description": "ajout r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 MDKSA-2004:111 de Mandrake relatif \u00e0 wxGTK2.",
      "revision_date": "2004-10-22T00:00:00.000000"
    },
    {
      "description": "ajout r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 de Red Hat. Ajout r\u00e9f\u00e9rence \u00e0 la vuln\u00e9rabilit\u00e9 CAN-2004-0929 ainsi qu\u0027aux documents associ\u00e9s (bulletin SUSE-SA:2004:038 et bulletin d\u0027iDEFENSE).",
      "revision_date": "2004-10-25T00:00:00.000000"
    },
    {
      "description": "ajout r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 d\u0027Apple. Ajout r\u00e9f\u00e9rence \u00e0 la PDFlib ainsi qu\u0027au bulletin GLSA-200412-02.",
      "revision_date": "2004-12-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    }
  ],
  "summary": null,
  "title": "Multiples vuln\u00e9rabilit\u00e9s de Libtiff",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 GLSA 200410-11 de Gentoo",
      "url": null
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.