FreeBSD : tiff -- buffer overflow vulnerability (313da7dc-763b-11df-bcce-0018f3e2eb82)
Medium Nessus Plugin ID 46876
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionKevin Finisterre reports :
Multiple integer overflows in the handling of TIFF files may result in a heap buffer overflow. Opening a maliciously crafted TIFF file may lead to an unexpected application termination or arbitrary code execution. The issues are addressed through improved bounds checking.
Credit to Kevin Finisterre of digitalmunition.com for reporting these issues.
SolutionUpdate the affected packages.