CVE-2004-1307

Description

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.

How to fix CVE-2004-1307

To remediate CVE-2004-1307, upgrade the affected package to a fixed version below.

• Debian/tiff—upgrade to 3.7.0 or later

Is CVE-2004-1307 being exploited?

Moderate — EPSS is 5.1%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 3.7.0

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2004-1307