Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-29408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms o...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/08/04 2:4 a.m.4 views

SUSE CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

4CVSS9.1AI score0.0086EPSS
Exploits0References4
NVD
NVD
added 2023/08/02 8:15 p.m.21 views

CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS6.3AI score0.0086EPSS
Exploits0References7
OSV
OSV
added 2023/08/02 8:15 p.m.22 views

CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS7AI score
Exploits0References7
OSV
OSV
added 2023/08/02 8:15 p.m.2 views

DEBIAN-CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS6.8AI score0.0086EPSS
Exploits0References1
Prion
Prion
added 2023/08/02 8:15 p.m.24 views

Code injection

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

4.3CVSS6.1AI score0.0086EPSS
Exploits0References7Affected Software2
OSV
OSV
added 2023/08/02 8:15 p.m.3 views

UBUNTU-CVE-2023-29408

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS5.8AI score0.0086EPSS
Exploits0References5
CVE
CVE
added 2023/08/02 7:52 p.m.91 views

CVE-2023-29408

The CVE-2023-29408 vulnerability affects the TIFF decoder in the Go image libraries (golang-x-image). The root cause is the decoder not enforcing a limit on the size of compressed tile data, allowing a malicious image to trigger excessive memory and CPU usage even for small images. Practical impa...

6.5CVSS6.2AI score0.0086EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2023/08/02 7:52 p.m.35 views

CVE-2023-29408 Excessive resource consumption in golang.org/x/image/tiff

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.4AI score0.0086EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/08/02 12:0 a.m.6 views

Google Golang Security Vulnerability

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

6.5CVSS6.6AI score0.0086EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/08/02 12:0 a.m.2 views

PT-2023-6962 · Golang +3 · Golang +3

Name of the Vulnerable Software and Affected Versions: Golang affected versions not specified TIFF decoder affected versions not specified Description: The issue is related to the decoding of large amounts of compressed data, which can consume excessive memory and CPU. A maliciously-crafted image...

7.8CVSS5.8AI score0.0086EPSS
Exploits0References30
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/02 12:0 a.m.30 views

Allocation of Resources Without Limits or Throttling

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:18 a.m.4 views

SUSE CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

5CVSS6.6AI score0.0166EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.40 views

Slackware: Security Advisory (SSA:2009-116-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.1AI score0.04246EPSS
Exploits3References2
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.34 views

CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

5CVSS6AI score0.0166EPSS
Exploits0References1
NVD
NVD
added 2005/05/02 4:0 a.m.19 views

CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

5CVSS6.1AI score0.0166EPSS
Exploits0References5
OSV
OSV
added 2005/05/02 4:0 a.m.8 views

CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

6.1AI score
Exploits0References5
Cvelist
Cvelist
added 2005/03/26 5:0 a.m.32 views

CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

6AI score0.0166EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2005/03/26 5:0 a.m.32 views

CVE-2005-0760

The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

5CVSS5.9AI score0.0166EPSS
Exploits0
CVE
CVE
added 2005/03/26 5:0 a.m.72 views

CVE-2005-0760

CVE-2005-0760 : The TIFF decoder in ImageMagick before 6.0 is vulnerable to a crafted TIFF file that can crash the process, causing a denial of service. The connected records corroborate this issue across multiple advisories (Debian DSA-702-1, Red Hat RHSA-2005:070, etc.). Affected component: Ima...

5CVSS6AI score0.0166EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder