Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-29408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms o...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2024/08/23 12:0 a.m.8 views

Security update for keybase-client (moderate)

openSUSE Security Update: Security update for keybase-client Announcement ID: openSUSE-SU-2024:0194-2 Rating: moderate References: 1213928 Cross-References: CVE-2023-29408 CVSS scores: CVE-2023-29408 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2023-29408 SUSE: 4...

4CVSS6.9AI score0.0086EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.26 views

Fedora 39 : golang-x-image (2023-28cff1a2de)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-28cff1a2de advisory. Update to 0.13.0 Security fix for CVE-2023-29408 Security fix for CVE-2023-29407 Security fix for CVE-2022-41727 Tenable has extracted the preceding...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/10/15 12:0 a.m.24 views

Fedora 38 : golang-x-image (2023-4d95d44e7b)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4d95d44e7b advisory. Update to 0.13.0 Security fix for CVE-2023-29408 Security fix for CVE-2023-29407 Security fix for CVE-2022-41727 Tenable has extracted the preceding...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References4
Circl
Circl
added 2023/08/03 12:39 a.m.4 views

CVE-2023-29408

creationtimestamp| type| source ---|---|--- 2023-08-03 00:39:37+00:00| seen| https://t.me/cibsecurity/67621...

6.5CVSS6.8AI score0.0086EPSS
Exploits0References1
OSV
OSV
added 2023/08/02 8:15 p.m.22 views

CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS7AI score
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/08/02 7:52 p.m.23 views

CVE-2023-29408 Excessive resource consumption in golang.org/x/image/tiff

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.6AI score0.0086EPSS
Exploits0References7
CVE
CVE
added 2023/08/02 7:52 p.m.91 views

CVE-2023-29408

The CVE-2023-29408 vulnerability affects the TIFF decoder in the Go image libraries (golang-x-image). The root cause is the decoder not enforcing a limit on the size of compressed tile data, allowing a malicious image to trigger excessive memory and CPU usage even for small images. Practical impa...

6.5CVSS6.2AI score0.0086EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder