tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input."
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2010-07-01T18:00:00

Updated: 2024-08-07T02:25:07.387Z

Reserved: 2010-06-09T00:00:00

Link: CVE-2010-2233

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-07-02T12:43:52.937

Modified: 2023-02-13T04:20:44.500

Link: CVE-2010-2233

cve-icon Redhat

Severity : Important

Publid Date: 2010-06-10T00:00:00Z

Links: CVE-2010-2233 - Bugzilla