Lucene search
K

106 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Tiff

LibTIFF 4.4.0 contains an out-of-bounds read vulnerability in tiffcrop, located at line 3488 of tools/tiffcrop.c. This vulnerability allows attackers to cause a denial-of-service attack through a malicious tiff file. For users who compile LibTIFF from source code, the fix is available in the comm...

6.8CVSS6.8AI score0.00421EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/05/20 12:9 p.m.15 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/20 11:26 a.m.15 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/23 12:0 a.m.7 views

CVE-2026-30006

XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file...

5.8AI score0.00158EPSS
Exploits1References2
OSV
OSV
added 2025/12/18 4:15 p.m.4 views

UBUNTU-CVE-2025-68469

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue...

5.1CVSS5.8AI score0.00178EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/18 3:36 p.m.26 views

CVE-2025-68469 ImageMagick vulnerable to heap-buffer-overflow

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue...

5.1CVSS0.00178EPSS
Exploits1References1
OSV
OSV
added 2025/11/25 10:18 p.m.5 views

JLSEC-2025-311 An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause...

An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file...

6.5CVSS8.7AI score0.00805EPSS
Exploits1References4
OSV
OSV
added 2025/11/25 10:18 p.m.6 views

JLSEC-2025-273 Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via ...

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010...

6.5CVSS6.8AI score0.01206EPSS
Exploits1References16
Amazon
Amazon
added 2025/10/14 12:0 a.m.10 views

Medium: libtiff

Issue Overview: A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue...

6.1CVSS5.6AI score0.00388EPSS
Exploits3
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2016-6269

Malware in sbrugna...

6.5CVSS7.8AI score0.04797EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-9541

Malware in sbrugna...

8.8CVSS8.6AI score0.041EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-1308

Malware in sbrugna...

9.3CVSS6.4AI score0.04573EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680636)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680636 advisory. Null source pointer passed as an argument to memcpy function within TIFFFetchNormalTag in tifdirread.c in libtiff versions up to 4.3.0 could lead to Denial of Servic...

7.7CVSS6.6AI score0.0125EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-28884

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.01895EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42471

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00275EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2022-24912

Malicious code in bioql PyPI...

5.5CVSS7AI score0.01206EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-12805

Malicious code in bioql PyPI...

6.8CVSS6.4AI score0.00435EPSS
Exploits1References11
Snyk
Snyk
added 2025/08/25 3:54 p.m.3 views

Heap-based Buffer Overflow

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.1CVSS6.6AI score0.00178EPSS
Exploits1References2
Snyk
Snyk
added 2025/08/25 3:54 p.m.2 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.1CVSS6.6AI score0.00178EPSS
Exploits1References2
Snyk
Snyk
added 2025/08/25 3:54 p.m.2 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.1CVSS6.6AI score0.00178EPSS
Exploits1References2
Rows per page
Query Builder