172 matches found
RHSA-2026:19604 Red Hat Security Advisory: libtiff security update
Bulletin has no description...
Important: Red Hat Security Advisory: libtiff security update
An update for libtiff is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...
Important: Red Hat Security Advisory: libtiff security update
An update for libtiff is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Important: Red Hat Security Advisory: libtiff security update
An update for libtiff is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHSA-2026:19150 Red Hat Security Advisory: libtiff security update
Bulletin has no description...
Astra Linux – Vulnerability in Tiff
A buffer overflow vulnerability has been discovered in Libtiff V.4.0.7. This vulnerability allows a local attacker to cause a denial of service through the tiffcp function in tiffcp.c...
Astra Linux – Vulnerability in TIF format
A vulnerability has been discovered in LibTIFF. It has been classified as critical. This vulnerability affects the TIFFReadRGBATileExt function in the file libtiff/tifgetimage.c. Manipulation of this function can lead to integer overflow. The attack can be initiated remotely. The exploit has been...
Alibaba Cloud Linux 3 : 0106: libtiff (ALINUX3-SA-2026:0106)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0106 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-4775: A flaw was found in the libtiff...
libtiff security update
An update is available for libtiff. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff packages contain a library of functions for manipulating Tagged...
RLSA-2026:16055 Important: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 For more details about the security issues,...
Debian dla-4536 : libtiff-dev - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4536 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4536-1 [email protected] https://www.debian.org/lts/security/...
CLSA-2026-1776349106 libtiff: Fix of 5 CVEs
CVE-2022-34526: fix stack buffer overflow in TIFFVGetField via invalid codec-specific tag - CVE-2023-2908: fix null pointer dereference in countInkNamesString in tifdir.c - CVE-2023-6277: prevent out-of-memory attacks by comparing allocation size with file size - CVE-2023-1916: fix out-of-bounds...
RHEL 10 : libtiff (RHSA-2026:7304)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:7304 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Segment fault in...
[SECURITY] [DSA 6303-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6203-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 08, 2026 https://www.debian.org/security/faq -...
CVE-2026-4775
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...
AZL-78308 CVE-2025-61143 affecting package libtiff for versions less than 4.6.0-12
libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c...
JLSEC-2025-307 A null pointer dereference issue was found in Libtiff's tif_dir.c file
A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...
JLSEC-2025-310 A memory leak flaw was found in Libtiff's tiffcrop utility
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denia...
JLSEC-2025-265 Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_d...
Null source pointer passed as an argument to memcpy function within TIFFFetchNormalTag in tifdirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file...
JLSEC-2025-297 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to...
LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127...