{"id":"CVE-2013-4243","details":"Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.","modified":"2026-04-10T03:42:56.475550Z","published":"2013-09-10T19:55:11Z","related":["MGASA-2013-0291","openSUSE-SU-2024:10554-1"],"references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2014-0223.html"},{"type":"ADVISORY","url":"http://secunia.com/advisories/54543"},{"type":"ADVISORY","url":"http://secunia.com/advisories/54628"},{"type":"ADVISORY","url":"http://www.debian.org/security/2013/dsa-2744"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-16"},{"type":"FIX","url":"http://bugzilla.maptools.org/show_bug.cgi?id=2451"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=996052"},{"type":"WEB","url":"http://www.securityfocus.com/bid/62082"}],"schema_version":"1.7.5"}