Unrated severityNVD Advisory· Published Jul 6, 2010· Updated Apr 29, 2026

CVE-2010-2631

Description

LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481.

Affected products

LibTIFF/Libtiff
cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.maptools.org/show_bug.cginvdExploitPatch
secunia.com/advisories/50726nvd
security.gentoo.org/glsa/glsa-201209-02.xmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000