6 matches found
Security Bulletin: IBM Cloud Pak for Data System 1.0 is affected by multiple vulnerabilities
Summary IBM Cloud Pak for Data System 1.0 CPDS 1.0 includes multiple third-party components that are affected by various security vulnerabilities. These vulnerabilities include integer overflow issues in GLib leading to heap corruption and denial of service, a write-what-where condition in the...
Linux Distros Unpatched Vulnerability : CVE-2017-9935
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2pwritepdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For...
SUSE CVE-2016-5319
Heap-based buffer overflow in tifpackbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file...
SUSE CVE-2020-35524
A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
UBUNTU-CVE-2016-9534
tifwrite.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1 that didn't reset the tifrawcc and tifrawcp members. Reported as MSVR 35095, aka "TIFFFlushData1 heap-buffer-overflow."...
Silicon Graphics LibTIFF Heap Buffer Overflow Vulnerability (CNVD-2016-10453)
Silicon Graphics LibTIFF is a library for reading and writing TIFF files. A heap buffer overflow vulnerability exists in Silicon Graphics LibTIFF that can be exploited by a remote attacker to construct a malicious TIFF file that can be parsed by a user to crash an application or execute arbitrary...