CVE-2006-3465

Name of the Vulnerable Software and Affected Versions libtiff versions prior to 3.8.2 kdegraphics-2.2.2 kdegraphics-3.1.3 kdegraphics-devel-2.2.2 kdegraphics-devel-3.1.3 libtiff-devel libtiff-64bit libtiff-devel-64bit libtiff-devel-32bit libtiff-32bit libtiffxx0 tiff versions prior to 3.8.2-r2

Description The issue involves multiple vulnerabilities in the libtiff and kdegraphics packages, which can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely, potentially causing a denial of service or allowing the execution of arbitrary code. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For libtiff versions prior to 3.8.2, update to version 3.8.2 or later. For kdegraphics-2.2.2, kdegraphics-3.1.3, kdegraphics-devel-2.2.2, and kdegraphics-devel-3.1.3, consider disabling the vulnerable components until a patch is available. For libtiff-devel, libtiff-64bit, libtiff-devel-64bit, libtiff-devel-32bit, libtiff-32bit, and libtiffxx0, restrict access to these packages to minimize the risk of exploitation. For tiff versions prior to 3.8.2-r2, update to version 3.8.2-r2 or later. At the moment, there is no information about additional mitigation measures.