2
Candidate: CVE-2008-2327
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2327
5
https://usn.ubuntu.com/usn/usn-639-1
7
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and
8
(3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF
9
3.8.2 and earlier allow context-dependent attackers to execute arbitrary
10
code via a crafted TIFF file, related to improper handling of the
16
Discovered-by: Draw Yao
20
upstream_tiff: released (3.8.2-11)
21
dapper_tiff: released (3.7.4-1ubuntu3.3)
22
feisty_tiff: released (3.8.2-6ubuntu1)
23
gutsy_tiff: released (3.8.2-7ubuntu2.1)
24
hardy_tiff: released (3.8.2-7ubuntu3.1)
25
devel_tiff: released (3.8.2-11)