Lucene search
K

479 matches found

OSV
OSV
added 5 days ago5 views

OESA-2026-2835 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

5.9AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.12 views

EulerOS Virtualization 2.13.0 : libtiff (EulerOS-SA-2026-2406)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the...

7.8CVSS5.7AI score0.00553EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/20 1:29 p.m.15 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in tiffcrop, located at line 368 of libtiff/tifunix.c. This vulnerability is invoked by lines 2903 and 6778 of tools/tiffcrop.c. This allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...

6.8CVSS6.7AI score0.00435EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in jbigkit

In LibTIFF 4.0.8, there is a memory allocation failure in the tifjbig.c file. A specially crafted TIFF document can cause an abort, leading to a remote denial-of-service attack...

6.5CVSS6.8AI score0.02846EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds read in tiffcrop at line 3400 of tools/tiffcrop.c, allowing attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile LibTIFF from source code, the fix is available in the commit afaabc3e...

6.8CVSS6.8AI score0.00421EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/05/19 4:26 p.m.10 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/18 12:0 a.m.14 views

Alibaba Cloud Linux 3 : 0106: libtiff (ALINUX3-SA-2026:0106)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0106 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-4775: A flaw was found in the libtiff...

7.8CVSS6AI score0.00553EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/22 12:26 p.m.7 views

Security Bulletin: Vulnerabilities in kernel affects IBM Netezza Appliance

Summary The kernel package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2023-52355, CVE-2023-52356 Vulnerability Details CVEID:CVE-2023-52355 DESCRIPTION: An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff...

7.5CVSS5.8AI score0.02187EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/26 5:50 p.m.12 views

libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service

A segment fault SEGV flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service...

7.5CVSS6.7AI score0.02187EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/25 9:7 p.m.4 views

CVE-2026-33809

A flaw was found in golang.org/x/image/tiff. A remote attacker could exploit this vulnerability by providing a maliciously crafted Tagged Image File Format TIFF file. This could cause the image decoding process to attempt to allocate up to 4 gigabytes GiB of memory. The excessive resource...

6.5CVSS5.6AI score0.00328EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/25 11:52 a.m.10 views

SUSE CVE-2026-4775

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

8.6CVSS6.1AI score0.00553EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by...

7.8CVSS5.8AI score0.00553EPSS
Exploits0References3
NVD
NVD
added 2026/03/23 5:16 p.m.6 views

CVE-2026-30006

XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file...

6.2CVSS0.00158EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/23 12:0 a.m.22 views

CVE-2026-30006

XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file...

0.00158EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:0 a.m.6 views

CVE-2026-30007

XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file...

6.2CVSS5.8AI score0.00158EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.6 views

CVE-2020-23894

A User Mode Write AV in ntdll!RtlpCoalesceFreeBlocks+0x268 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tiff file...

5.5CVSS6.7AI score0.00545EPSS
Exploits0References1
OSV
OSV
added 2026/01/07 4:1 p.m.3 views

SUSE-SU-2026:0059-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-68469: crash due to heap buffer overflow when processing a specially crafted TIFF file bsc1255391...

5.1CVSS7.2AI score0.00178EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/12/19 2:29 p.m.4 views

CVE-2025-68469

A flaw was found in ImageMagick. Processing a specially crafted TIFF file can cause a heap-based buffer overflow and result in a denial of service. Mitigation To mitigate this issue, avoid processing untrusted TIFF files with ImageMagick. In environments where ImageMagick processes files...

5.1CVSS6.7AI score0.00178EPSS
Exploits1References4
OSV
OSV
added 2025/11/25 10:18 p.m.6 views

JLSEC-2025-264 Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to ...

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...

5.5CVSS6.6AI score0.0127EPSS
Exploits1References16
Rows per page
Query Builder