openSUSE 16 Security Update : MozillaFirefox (openSUSE-SU-2026:20789-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20789-1 advisory. This update for MozillaFirefox fixes the following issues - Update to Firefox Extended Support Release 140.11.0 ESR MFSA 2026-48 bsc1265212. MFS...

CVE-2026-8961

creationtimestamp| type| source ---|---|--- 2026-05-19 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260520 2026-05-20 02:01:26+00:00| seen| https://bsky.app/profile/slackers.it/post/3mmasq5syxh2i 2026-05-20 02:01:33+00:00| seen|...

CVE-2026-8961

Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

Linux Distros Unpatched Vulnerability : CVE-2026-8961

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spoofing issue in the Form Autofill component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

ROOT-OS-DEBIAN-12-CVE-2025-8961 CVE-2025-8961 in rootio-tiff - Patched by Root

Root has patched CVE-2025-8961 in the rootio-tiff package for Root:Debian:12. Multiple fixed versions available...

CVE-2025-8961 affecting package libtiff for versions less than 4.6.0-11

CVE-2025-8961 affecting package libtiff for versions less than 4.6.0-11. A patched version of the package is available...

SUSE: Security Advisory (SUSE-SU-2025:21009-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated libtiff packages fix security vulnerabilities

LibTIFF fax2ps tiff2pdf.c t2preadtiffinit null pointer dereference. CVE-2024-13978 LibTIFF tiffmedian.c gethistogram use after free. CVE-2025-8176 LibTIFF thumbnail.c setrow buffer overflow. CVE-2025-8177 libtiff tiff2ps tiff2ps.c PSLvl2page null pointer dereference. CVE-2025-8534 LibTIFF tiffcro...

Amazon Linux 2 : compat-libtiff3, --advisory ALAS2-2025-3039 (ALAS-2025-3039)

The version of compat-libtiff3 installed on the remote host is prior to 3.9.4-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3039 advisory. A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the compone...

Low: compat-libtiff3

Issue Overview: A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be...

CVE-2025-8961

creationtimestamp| type| source ---|---|--- 2025-09-30 01:33:03+00:00| seen| https://bsky.app/profile/bluesky.awakari.com/post/3lzzexup6y22u 2025-09-30 01:33:04+00:00| seen| https://bsky.app/profile/bluesky.awakari.com/post/3lzzexviigf23 2025-09-30 07:27:35+00:00| seen|...

Ubuntu: Security Advisory (USN-7783-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2025:03345-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. - CVE-2025-8534: null pointer dereference in function PSLvl2page bsc1247582. - CVE-2025-8961: segmentation fault via main function of tiffcrop utility bsc1248117...

CVE-2025-8961 vulnerabilities

Vulnerabilities for packages: tiff...

CVE-2025-8961

A memory corruption flaw was found in libTIFF. This issue affects the May function of the tiffcrop.c file in the tiffcrop component. This attack needs to be approached locally. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat...

UBUNTU-CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

CVE-2017-8961

creationtimestamp| type| source ---|---|--- 2024-12-28 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-12-28 2024-12-30 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-12-30 2025-01-01 00:00:00+00:00| seen| The Shadowserver...

CVE-2024-8961

creationtimestamp| type| source ---|---|--- 2024-11-15 06:51:37+00:00| seen| https://infosec.exchange/users/cve/statuses/113485643524883819 2024-11-15 09:23:49+00:00| seen| https://t.me/cvedetector/11048...

CVE-2024-8961 Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders <= 6.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nomoreitemstext’ parameter in all versions up to, and including, 6.0.7 due to insufficient input sanitization and...