Unrated severityNVD Advisory· Published Jan 27, 2005· Updated Jun 16, 2026
CVE-2004-0929
CVE-2004-0929
Description
Heap-based buffer overflow in the OJPEGVSetField function in tif_ojpeg.c for libtiff 3.6.1 and earlier, when compiled with the OJPEG_SUPPORT (old JPEG support) option, allows remote attackers to execute arbitrary code via a malformed TIFF image.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:o:suse:suse_linux:1.0:*:desktop:*:*:*:*:*+ 6 more
- cpe:2.3:o:suse:suse_linux:1.0:*:desktop:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:8.1:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:8.2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- www.idefense.com/application/poi/displaynvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/129910nvdUS Government Resource
- www.novell.com/linux/security/advisories/2004_38_libtiff.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17843nvd
News mentions
0No linked articles in our index yet.