Ubuntu Security Notice (C) 2008-2013 Canonical, Inc. / NASL script (C) 2008-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Drew Yao discovered that the TIFF library did not correctly validate
LZW compressed TIFF images. If a user or automated system were tricked
into processing a malicious image, a remote attacker could execute
arbitrary code or cause an application linked against libtiff to
crash, leading to a denial of service.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.0
Public Exploit Available : false