Lucene search
RedhatCVELIST:CVE-2020-35524HistoryMar 09, 2021 - 7:17 p.m.
CVE-2020-35524
2021-03-0919:17:54
CWE-787
redhat
www.cve.org
6
vulnerability
buffer overflow
libtiff
tiff images
arbitrary code execution
confidentiality
integrity
system availability
A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff’s TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
CNA Affected
[
{
"product": "libtiff",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "libtiff 4.2.0"
}
]
}
]References
bugzilla.redhat.com/show_bug.cgi?id=1932044
gitlab.com/libtiff/libtiff/-/merge_requests/159
gitlab.com/rzkn/libtiff/-/commit/7be2e452ddcf6d7abca88f41d3761e6edab72b22
lists.debian.org/debian-lts-announce/2021/06/msg00023.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BMHBYFMX3D5VGR6Y3RXTTH3Q4NF4E6IG/
security.gentoo.org/glsa/202104-06
security.netapp.com/advisory/ntap-20210521-0009/
www.debian.org/security/2021/dsa-4869
Related
cbl_mariner
cbl_mariner
CVE-2020-35524 affecting package libtiff 4.1.0-3
2021-03-29 02:55:01
CVE-2020-35524 affecting package libtiff for versions less than 4.1.0-3
2022-04-09 06:51:55
prion
prion
Heap overflow
2021-03-09 20:15:00
debiancve
debiancve
CVE-2020-35524
2021-03-09 20:15:13
ubuntucve
ubuntucve
CVE-2020-35524
2020-12-31 00:00:00
veracode
veracode
Arbitrary Code Execution
2021-03-16 17:03:56
osv
osv
CVE-2020-35524
2021-03-09 20:15:13
tiff - security update
2021-03-12 00:00:00
tiff - security update
2021-06-28 00:00:00
redhatcve
redhatcve
CVE-2020-35524
2021-02-23 20:03:29
nvd
nvd
CVE-2020-35524
2021-03-09 20:15:13
alpinelinux
alpinelinux
CVE-2020-35524
2021-03-09 20:15:13
cve
cve
CVE-2020-35524
2021-03-09 20:15:13
openvas
openvas
Debian: Security Advisory (DSA-4869-1)
2021-03-14 00:00:00
Ubuntu: Security Advisory (USN-4755-1)
2021-02-26 00:00:00
Debian: Security Advisory (DLA-2694-1)
2021-06-28 00:00:00
nessus
nessus
Debian DSA-4869-1 : tiff - security update
2021-03-15 00:00:00
Debian DLA-2694-1 : tiff security update
2021-06-28 00:00:00
cloudfoundry
cloudfoundry
USN-4755-1: LibTIFF vulnerabilities | Cloud Foundry
2021-03-02 00:00:00
debian
debian
[SECURITY] [DLA 2694-1] tiff security update
2021-06-27 23:03:55
[SECURITY] [DSA 4869-1] tiff security update
2021-03-12 21:40:55
ubuntu
ubuntu
LibTIFF vulnerabilities
2021-02-25 00:00:00
LibTIFF vulnerabilities
2023-02-02 00:00:00
oraclelinux
oraclelinux
libtiff security and bug fix update
2021-11-16 00:00:00
redhat
redhat
(RHSA-2021:4241) Moderate: libtiff security and bug fix update
2021-11-09 08:50:38
(RHSA-2021:5127) Moderate: Openshift Logging security and bug update (5.2.4)
2021-12-14 16:45:56
(RHSA-2021:5129) Moderate: Openshift Logging security and bug update (5.3.1)
2021-12-14 16:46:20
rocky
rocky
libtiff security and bug fix update
2021-11-09 08:50:38
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2021-04-30 00:00:00
redos
redos
almalinux
almalinux
Moderate: libtiff security and bug fix update
2021-11-09 08:50:38
fedora
fedora
[SECURITY] Fedora 33 Update: libtiff-4.1.0-8.fc33
2021-04-21 21:41:44
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 4.2.0-alt1
2020-12-25 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerabilities
2021-03-04 15:26:19
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0332
2021-03-27 00:00:00
Important Photon OS Security Update - PHSA-2021-0332
2021-03-24 00:00:00
Important Photon OS Security Update - PHSA-2021-0210
2021-03-26 00:00:00
suse
suse
Security update for tiff (important)
2022-02-17 00:00:00
amazon
amazon
Medium: libtiff
2022-04-25 22:56:00
Medium: libtiff
2022-07-28 20:38:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1896
2021-07-02 17:18:37