Security Advisory

CVE-2006-2120

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-05-01 22:00:00

Last updated 2024-08-07 17:35:31

Assigner redhat

State PUBLISHED

Description

The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.

← Browse all CVEs View on cve.org ↗