CVE-2010-2443

EPSS 2.7%

Published: 6/24/2010Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-2443

Description

The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function.

Affected packages (1)

Debian/tifffrom 0, < 3.9.4-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-2443