DEBIAN-CVE-2010-2631

DEBIAN-CVE-2010-2631 PUBLISHED CVSS 8.699999809265137 HIGH

LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481.

Risk Scores

CVSS 4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:14	tiff	0, 0, 0
Debian:12	tiff	0, 0, 0
Debian:13	tiff	0, 0, 0
Debian:11	tiff	0, 0, 0

Timeline

Jul 6, 2010 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2010-2631 advisory

Open in Interactive Console →