CVE-2010-2483 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-2483 PUBLISHED CVSS 4.300000190734863 MEDIUM

The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a TIFF file with an invalid combination of SamplesPerPixel and Photometric values.

EPSS 1.27% · 79.4th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

1.27%

79.4th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
libtiff	libtiff	3.9.0

Timeline

Jul 6, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/591605 url
[oss-security] 20100624 Re: CVE requests: LibTIFF mailing-list
40527 third-party-advisory
[oss-security] 20100629 Re: CVE requests: LibTIFF mailing-list
[oss-security] 20100623 CVE requests: LibTIFF mailing-list
ADV-2010-1761 vdb
http://bugzilla.maptools.org/show_bug.cgi?id=2216 url
GLSA-201209-02 vendor-advisory
RHSA-2010:0519 vendor-advisory
40422 third-party-advisory
[oss-security] 20100624 Re: CVE requests: LibTIFF mailing-list
[oss-security] 20100701 Re: CVE requests: LibTIFF mailing-list
[oss-security] 20100630 Re: CVE requests: LibTIFF mailing-list
50726 third-party-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=603081 url
https://nvd.nist.gov/vuln/detail/CVE-2010-2483 advisory
https://access.redhat.com/errata/RHSA-2010:0519 url
https://access.redhat.com/security/cve/CVE-2010-2483 url
https://bugzilla.redhat.com/show_bug.cgi?id=611900 url

Open in Interactive Console →