Lucene search
K

479 matches found

OSV
OSV
added 4 days ago5 views

OESA-2026-2835 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

5.9AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in jbigkit

In LibTIFF 4.0.8, there is a memory allocation failure in the tifjbig.c file. A specially crafted TIFF document can cause an abort, leading to a remote denial-of-service attack...

6.5CVSS6.8AI score0.02846EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds read in tiffcrop at line 3400 of tools/tiffcrop.c, allowing attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile LibTIFF from source code, the fix is available in the commit afaabc3e...

6.8CVSS6.8AI score0.00421EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.11 views

EulerOS Virtualization 2.13.0 : libtiff (EulerOS-SA-2026-2406)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the...

7.8CVSS5.7AI score0.00553EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/20 1:29 p.m.15 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in tiffcrop, located at line 368 of libtiff/tifunix.c. This vulnerability is invoked by lines 2903 and 6778 of tools/tiffcrop.c. This allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...

6.8CVSS6.7AI score0.00435EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/05/19 4:26 p.m.10 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/18 12:0 a.m.14 views

Alibaba Cloud Linux 3 : 0106: libtiff (ALINUX3-SA-2026:0106)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0106 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-4775: A flaw was found in the libtiff...

7.8CVSS6AI score0.00553EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/22 12:26 p.m.7 views

Security Bulletin: Vulnerabilities in kernel affects IBM Netezza Appliance

Summary The kernel package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2023-52355, CVE-2023-52356 Vulnerability Details CVEID:CVE-2023-52355 DESCRIPTION: An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff...

7.5CVSS5.8AI score0.02187EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/26 5:50 p.m.12 views

libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service

A segment fault SEGV flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service...

7.5CVSS6.7AI score0.02187EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/25 9:7 p.m.4 views

CVE-2026-33809

A flaw was found in golang.org/x/image/tiff. A remote attacker could exploit this vulnerability by providing a maliciously crafted Tagged Image File Format TIFF file. This could cause the image decoding process to attempt to allocate up to 4 gigabytes GiB of memory. The excessive resource...

6.5CVSS5.6AI score0.00328EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/25 11:52 a.m.8 views

SUSE CVE-2026-4775

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

8.6CVSS6.1AI score0.00553EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by...

7.8CVSS5.8AI score0.00553EPSS
Exploits0References3
NVD
NVD
added 2026/03/23 5:16 p.m.6 views

CVE-2026-30006

XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file...

6.2CVSS0.00158EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/23 12:0 a.m.22 views

CVE-2026-30006

XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file...

0.00158EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:0 a.m.6 views

CVE-2026-30007

XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file...

6.2CVSS5.8AI score0.00158EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.6 views

CVE-2020-23894

A User Mode Write AV in ntdll!RtlpCoalesceFreeBlocks+0x268 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tiff file...

5.5CVSS6.7AI score0.00545EPSS
Exploits0References1
OSV
OSV
added 2026/01/07 4:1 p.m.3 views

SUSE-SU-2026:0059-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-68469: crash due to heap buffer overflow when processing a specially crafted TIFF file bsc1255391...

5.1CVSS7.2AI score0.00178EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/12/19 2:29 p.m.3 views

CVE-2025-68469

A flaw was found in ImageMagick. Processing a specially crafted TIFF file can cause a heap-based buffer overflow and result in a denial of service. Mitigation To mitigate this issue, avoid processing untrusted TIFF files with ImageMagick. In environments where ImageMagick processes files...

5.1CVSS6.7AI score0.00178EPSS
Exploits1References4
OSV
OSV
added 2025/11/25 10:18 p.m.5 views

JLSEC-2025-269 Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service ...

Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 46dc8fcd...

5.5CVSS8.6AI score0.01093EPSS
Exploits1References10
Rows per page
Query Builder