Unrated severityNVD Advisory· Published Mar 28, 2011· Updated Apr 29, 2026
CVE-2011-1167
CVE-2011-1167
Description
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
Affected products
47cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*+ 46 more
- cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*range: <=3.9.4
- cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
38- bugzilla.maptools.org/show_bug.cginvdPatch
- bugzilla.redhat.com/show_bug.cginvdPatch
- blackberry.com/btsc/KB27244nvd
- lists.apple.com/archives/security-announce/2012/Feb/msg00000.htmlnvd
- lists.apple.com/archives/security-announce/2012/May/msg00001.htmlnvd
- lists.apple.com/archives/security-announce/2012/Sep/msg00003.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.htmlnvd
- secunia.com/advisories/43900nvd
- secunia.com/advisories/43934nvd
- secunia.com/advisories/43974nvd
- secunia.com/advisories/44117nvd
- secunia.com/advisories/44135nvd
- secunia.com/advisories/50726nvd
- security.gentoo.org/glsa/glsa-201209-02.xmlnvd
- securityreason.com/securityalert/8165nvd
- slackware.com/security/viewer.phpnvd
- support.apple.com/kb/HT5130nvd
- support.apple.com/kb/HT5281nvd
- support.apple.com/kb/HT5503nvd
- ubuntu.com/usn/usn-1102-1nvd
- www.debian.org/security/2011/dsa-2210nvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/71256nvd
- www.redhat.com/support/errata/RHSA-2011-0392.htmlnvd
- www.securityfocus.com/archive/1/517101/100/0/threadednvd
- www.securityfocus.com/bid/46951nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2011/0795nvd
- www.vupen.com/english/advisories/2011/0845nvd
- www.vupen.com/english/advisories/2011/0859nvd
- www.vupen.com/english/advisories/2011/0860nvd
- www.vupen.com/english/advisories/2011/0905nvd
- www.vupen.com/english/advisories/2011/0930nvd
- www.vupen.com/english/advisories/2011/0960nvd
- www.zerodayinitiative.com/advisories/ZDI-11-107nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/66247nvd
News mentions
0No linked articles in our index yet.