723 matches found
SUSE CVE-2026-12912
A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT8BITABGR output format and a specific stride value, leading to a heap-base...
EulerOS 2.0 SP15 : libtiff (EulerOS-SA-2026-2491)
According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...
Astra Linux – Vulnerability in TIF format
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in the extractContigSamplesShifted24bits function in tools/tiffcrop.c:3604. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIFF file. For users who compile LibTIFF from source code, the fix is...
Astra Linux – Vulnerability in Tiff
A null source pointer passed as an argument to the memcopy function within TIFFReadDirectory in tifdirread.c in libtiff versions from 4.0 to 4.3.0 could lead to a Denial of Service attack through a crafted TIFF file. For users who compile libtiff from source code, a fix is available in the commit...
Astra Linux – Vulnerability in Tiff
A stack buffer overflow vulnerability was discovered in the tiffcp.c file of Libtiffs, within the main function. This vulnerability allows an attacker to submit a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue. This may result in memory corruption and cause a syste...
Astra Linux – Vulnerability in TIF format
The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...
Astra Linux – Vulnerability in jbigkit
In LibTIFF 4.0.8, there is a memory allocation failure in the tifjbig.c file. A specially crafted TIFF document can cause an abort, leading to a remote denial-of-service attack...
Astra Linux – Vulnerability in Tiff
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in tiffcrop, located at line 368 of libtiff/tifunix.c. This vulnerability is invoked by lines 2903 and 6778 of tools/tiffcrop.c. This allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...
Astra Linux – Vulnerability in TIF format
LibTIFF 4.4.0 contains an out-of-bounds read vulnerability in tiffcrop, located at line 3592 of tools/tiffcrop.c. This vulnerability allows attackers to cause a denial-of-service attack through a malicious tiff file. For users who compile LibTIFF from source code, the fix is available in the comm...
Astra Linux – Vulnerability in Tiff
A flaw was discovered in Libtiff. This vulnerability operates under the “write-what-where” condition, and is triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file’s metadata, an attacker can trick the library into...
Astra Linux – Vulnerability in Tiff
A out-of-bounds read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service attack through a crafted tiff file. For users who compile libtiff from source code, the fix is available in the commit 408976c4...
RHEL 7 : libtiff (RHSA-2026:25910)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:25910 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: libtiff: Arbitrar...
EulerOS Virtualization 2.13.1 : libtiff (EulerOS-SA-2026-2377)
According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the...
EulerOS Virtualization 2.13.0 : libtiff (EulerOS-SA-2026-2406)
According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the...
EulerOS 2.0 SP13 : libtiff (EulerOS-SA-2026-2300)
According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...
EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2026-2215)
According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...
MiracleLinux 8 : compat-libtiff3-3.9.4-15.el8_10 (AXSA:2026-739:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2026-739:01 advisory. libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 Tenable has extracted the...
USN-8345-1 gdal vulnerability
It was discovered that the vendored LibTIFF in GDAL incorrectly handled memory when parsing malformed TIFF image metadata. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information, or execute arbitrary code...
TencentOS Server 3: mingw-libtiff (TSSA-2025:1015)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:1015 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
RHEL 8 : compat-libtiff3 (RHSA-2026:20583)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:20583 advisory. The libtiff3 package provides libtiff 3, an older version of libtiff library for manipulating TIFF Tagged Image File Format image format files. This...