Mandriva Linux Security Advisory 2008-184
https://packetstormsecurity.com/files/69605/MDVSA-2008-184.txt
https://packetstormsecurity.com/files/69605/MDVSA-2008-184.txthttps://packetstormsecurity.com/files/69605/Mandriva-Linux-Security-Advisory-2008-184.htmlWed, 03 Sep 2008 21:33:25 GMTMandriva Linux Security Advisory - Drew Yaro of the Apple Product Security Team reported multiple uses of uninitialized values in libtiff's LZW compression algorithm decoder. An attacker could create a carefully crafted LZW-encoded TIFF file that would cause an application linked to libtiff to crash or potentially execute arbitrary code. The updated packages have been patched to prevent this issue.