DEBIAN-CVE-2010-2597

The TIFFVStripSize function in tifstrip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service application crash via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler...

[SECURITY] Fedora 13 Update: libtiff-3.9.4-1.fc13

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...

DEBIAN-CVE-2010-2065

Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow...

LibTIFF TIFFFetchData Function Integer Overflow (CVE-2006-2025)

Tagged Image File Format, TIFF, is a file format used primarily for storing digital images, including photographs and line art. TIFF is a popular format for high colour depth images, along with JPEG and PNG. It is widely supported by applications that handle images, such as browsers and also imag...

OpenOffice TIFF File Parsing Integer Overflow (CVE-2007-2834)

OpenOffice.org is an open source office suite. The package includes a word processor, a spreadsheet application, a presentation creator, an illustration drawer, a desktop database, and an equation editor. The product is made available for multiple platforms and languages. An integer overflow...

[SECURITY] Fedora 10 Update: OpenEXR-1.6.1-8.fc10

OpenEXR is a high dynamic-range HDR image file format developed by Indust rial Light & Magic for use in computer imaging applications. This package contai ns libraries and sample applications for handling the format...

Debian Security Advisory DSA 1835-1 (tiff)

The remote host is missing an update to tiff announced via advisory DSA 1835-1. OpenVAS Vulnerability Test $Id: deb18351.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1835-1 tiff Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

RedHat Update for libexif RHSA-2007:1165-01

Check for the Version of libexif OpenVAS Vulnerability Test RedHat Update for libexif RHSA-2007:1165-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for libexif CESA-2007:1166 centos4 i386

Check for the Version of libexif OpenVAS Vulnerability Test CentOS Update for libexif CESA-2007:1166 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Debian DSA-1632-1 : tiff - buffer underflow

Drew Yao discovered that libTIFF, a library for handling the Tagged Image File Format, is vulnerable to a programming error allowing malformed tiff files to lead to a crash or execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...

CentOS 4 : libexif (CESA-2007:1166)

Updated libexif packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif library. Exif is an image file format specification that...

libexif security update

CentOS Errata and Security Advisory CESA-2007:1165 Updated libexif packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif...

Important: Red Hat Security Advisory: kdelibs security update

Updated kdelibs packages that fix a flaw in kimgio input validation are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. KDE is a graphical desktop environment for the X Window System. Konqueror is...

[SECURITY] [DSA 714-1] New kdelibs packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 714-1 [email protected] http://www.debian.org/security/ Martin Schulze April 26th, 2005 http://www.debian.org/security/faq -...

kdelibs -- kimgio input validation errors

A KDE Security Advisory reports: kimgio contains a PCX image file format reader that does not properly perform input validation. A source code audit performed by the KDE security team discovered several vulnerabilities in the PCX and other image file format readers, some of them exploitable to...

security flaw

Integer overflow in the TIFFFetchStripThing function in tifdirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overfl...

security flaw

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service crash or memory corruption via TIFF images that lead to incorrect malloc calls...

security flaw

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

security flaw

ImageMagick before 6.0 allows remote attackers to cause a denial of service application crash via a TIFF image with an invalid tag...

security flaw

Integer overflow in 1 tifdirread.c and 2 tiffax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFFASCII or TIFFUNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow...