Lucene search
+L

443 matches found

RedHat Linux
RedHat Linux
added 2023/09/26 9:25 a.m.58 views

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.8CVSS6.5AI score0.00435EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2023/09/26 12:0 a.m.40 views

AlmaLinux 8 : libtiff (ALSA-2023:5353)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:5353 advisory. - LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file...

6.8CVSS6.3AI score0.00435EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2023/09/26 12:0 a.m.37 views

Oracle Linux 8 : libtiff (ELSA-2023-5353)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-5353 advisory. - Fix CVE-2023-0800 CVE-2023-0801 CVE-2023-0802 CVE-2023-0803 CVE-2023-0804 Tenable has extracted the preceding description block directly from the...

6.8CVSS6.4AI score0.00435EPSS
Exploits5References6
OSV
OSV
added 2023/09/26 12:0 a.m.22 views

ALSA-2023:5353 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: out-of-bounds write in extractContigSamplesShifted16bits in tools/tiffcrop.c CVE-2023-0800 libtiff: out-of-bounds write in TIFFmemcpy in libtiff/tifunix.c when called...

6.8CVSS6.9AI score0.00435EPSS
Exploits5References12
Github Security Blog
Github Security Blog
added 2023/09/05 6:30 a.m.32 views

Crash when processing crafted TIFF files

Disintegration Imaging 1.6.2 allows attackers to cause a panic because of an integer index out of range during a Grayscale call via a crafted TIFF file to the scan function of scanner.go. NOTE: it is unclear whether there are common use cases in which this panic could have any security consequenc...

5.5CVSS7AI score0.00354EPSS
Exploits1References4Affected Software1
Rockylinux
Rockylinux
added 2023/08/31 4:54 p.m.39 views

libtiff security update

An update is available for libtiff. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff packages contain a library of functions for manipulating Tagged...

5.5CVSS6.2AI score0.00461EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.6 views

PT-2023-4822 · Libtiff +7 · Libtiff +7

Name of the Vulnerable Software and Affected Versions: libtiff versions prior to 4.4.0 Description: The issue is related to the function TIFFReadDirectory in the libtiff library, which can cause a denial of service when processing a crafted TIFF file. This can allow a remote attacker to exploit t...

8.8CVSS6.7AI score0.02187EPSS
Exploits53References236
CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

编号撤回

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. This CVE number has been withdrawn...

8AI score
Exploits0References2
OSV
OSV
added 2023/08/11 2:15 p.m.7 views

CVE-2021-28427

Buffer Overflow vulnerability in XNView version 2.49.3, allows local attackers to execute arbitrary code via crafted TIFF file...

7.8CVSS6.1AI score0.00252EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.4 views

PT-2023-12127 · Xnview · Xnview

Name of the Vulnerable Software and Affected Versions: XNView version 2.49.3 Description: The issue allows local attackers to execute arbitrary code via a crafted TIFF file. This is a Buffer Overflow vulnerability. Recommendations: For XNView version 2.49.3, update to a version that fixes this...

7.8CVSS7.7AI score0.00252EPSS
Exploits0References6
NVD
NVD
added 2023/08/08 10:15 a.m.28 views

CVE-2023-38682

A vulnerability has been identified in JT2Go All versions V14.2.0.5, Teamcenter Visualization V13.2 All versions V13.2.0.14, Teamcenter Visualization V14.1 All versions V14.1.0.10, Teamcenter Visualization V14.2 All versions V14.2.0.5. The affected applications contain an out of bounds read past...

7.8CVSS7.6AI score0.00275EPSS
Exploits0References1
Prion
Prion
added 2023/08/08 10:15 a.m.29 views

Out-of-bounds

A vulnerability has been identified in JT2Go All versions V14.2.0.5, Teamcenter Visualization V13.2 All versions V13.2.0.14, Teamcenter Visualization V14.1 All versions V14.1.0.10, Teamcenter Visualization V14.2 All versions V14.2.0.5. The affected applications contain an out of bounds read past...

4.4CVSS7.6AI score0.00275EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/08/08 9:20 a.m.15 views

CVE-2023-38682

A vulnerability has been identified in JT2Go All versions V14.2.0.5, Teamcenter Visualization V13.2 All versions V13.2.0.14, Teamcenter Visualization V14.1 All versions V14.1.0.10, Teamcenter Visualization V14.2 All versions V14.2.0.5. The affected applications contain an out of bounds read past...

7.8CVSS7AI score0.00275EPSS
Exploits0References1
CVE
CVE
added 2023/08/08 9:20 a.m.51 views

CVE-2023-38682

Siemens JT2Go and Teamcenter Visualization are affected by an out-of-bounds read vulnerability (CVE-2023-38682) when parsing specially crafted TIFF files. Affected products/versions include JT2Go < 14.2.0.5 and Teamcenter Visualization: V13.2 < 13.2.0.14, V14.1 < 14.1.0.10, and V14.2

7.8CVSS7.5AI score0.00275EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2023/07/28 12:0 a.m.24 views

EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2023-2477)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via...

6.8CVSS6.3AI score0.00435EPSS
Exploits10References11
Amazon
Amazon
added 2023/07/19 12:0 a.m.7 views

Medium: libtiff

Issue Overview: libtiff 4.5.0 is vulnerable to Buffer Overflow in uvencode when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian. CVE-2023-26966 Affected Packages: libtiff Issue Correction: Run dnf update libtiff --releasever 2023.1.20230719 or dnf updat...

5.5CVSS7.3AI score0.00422EPSS
Exploits1
OSV
OSV
added 2023/07/12 3:15 p.m.7 views

AZL-43489 CVE-2023-3618 affecting package openjpeg2 2.3.1-12

A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tiffax3.c, resulting in a denial of service...

6.5CVSS6.7AI score0.01188EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/12 12:0 a.m.4 views

LibTIFF 安全漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. A security vulnerability exists in libtiff, which originates from a buffer overflow in the Fax3Encode function in libtiff/tiffax3.c. A...

6.5CVSS6.5AI score0.01188EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/06/29 12:0 a.m.3 views

PT-2023-4826 · Libtiff +7 · Libtiff +7

Name of the Vulnerable Software and Affected Versions: libtiff version 4.5.0 Description: The issue is caused by a buffer overflow on the stack in the uv encode function of the LibTIFF library. This can occur when the library reads a corrupted little-endian TIFF file and specifies the output to b...

8.8CVSS7.1AI score0.02187EPSS
Exploits54References297
Tenable Nessus
Tenable Nessus
added 2023/06/26 12:0 a.m.40 views

AlmaLinux 9 : libtiff (ALSA-2023:3711)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:3711 advisory. - processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow e.g., WRITE of size 307203 via a crafted TIFF image...

6.8CVSS6.7AI score0.00461EPSS
Exploits11References12
Rows per page
Query Builder