115 matches found
Astra Linux - уязвимость в tiff
A buffer overflow in LibTiff v4.0.10 allows attackers to cause a denial of service through the “TIFFVGetField” function in the component ‘libtiff/tifdir.c’...
Astra Linux - уязвимость в tiff
Libtiff 4.5.0 is vulnerable to a Buffer Overflow issue through the extractContigSamplesBytes function at /libtiff/tools/tiffcrop.c:3215...
Astra Linux - уязвимость в tiff
LibTIFF 4.3.0 has a out-of-bounds read issue in TIFFmemcpy in tifunix.c, especially in situations where a custom tag is used, and 0x0200 is the second value in the DE field...
SUSE SLES12 Security Update : tiff (SUSE-SU-2026:1966-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1966-1 advisory. This update for tiff fixes the following issue - CVE-2026-4775: signed integer overflow in the putcontig8bitYCbCr44tile function bsc1260411. Tenable ha...
SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2026:1965-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1965-1 advisory. This update for tiff fixes the following issue - CVE-2026-4775: signed integer overflow in the putcontig8bitYCbCr44tile...
CVE-2026-4775 vulnerabilities
Vulnerabilities for packages: tiff...
Astra Linux - уязвимость в tiff
In libtiff version 4.3.0, the unchecked dereference of a return value can allow attackers to trigger a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, this issue has been fixed in the commit f2b656e2...
Astra Linux - уязвимость в tiff
A null source pointer passed as an argument to the memcopy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to a Denial of Service attack through a crafted TIFF file. For users who compile libtiff from source code, this fix is available in the...
Astra Linux - уязвимость в tiff
A NULL pointer dereferencing in TIFFClose is caused by failing to open an output file a non-existent path or a path that requires permissions like /dev/null while specifying zones...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemset in libtiff/tifunix.c:340, when called from the process ProcessCropSelections, tools/tiffcrop.c:7619. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIFF file. For users who compile...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemcpy in libtiff/tifunix.c:346, when called from extractImageSection, located at tools/tiffcrop.c:6860. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds read in tiffcrop at line 3400 of tools/tiffcrop.c, allowing attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile LibTIFF from source code, the fix is available in the commit afaabc3e...
Astra Linux - уязвимость в tiff
A memory-related flaw was discovered in libtiff. Passing a specially crafted TIFF file to the TIFFOpen API may allow a remote attacker to cause a denial of service by using a crafted input with a size smaller than 379 KB...
Astra Linux - уязвимость в tiff
A null pointer dereference flaw was detected in Libtiff through the tifdirinfo.c file. This issue may allow an attacker to trigger memory allocation failures through certain methods, such as restricting the heap space size or injecting faults, resulting in a segmentation fault. This can cause the...
Astra Linux - уязвимость в tiff
The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...
Astra Linux - уязвимость в tiff
A null source pointer passed as an argument to the memcopy function within TIFFFetchNormalTag in tifdirread.c in libtiff versions up to 4.3.0 could lead to a Denial of Service attack through a crafted TIFF file...
Astra Linux - уязвимость в tiff
A out-of-bounds read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service attack through a crafted tiff file. For users who compile libtiff from source code, the fix is available in the commit 408976c4...
Astra Linux - уязвимость в tiff
A vulnerability has been discovered in LibTIFF. It has been classified as critical. This vulnerability affects the TIFFReadRGBATileExt function in the file libtiff/tifgetimage.c. Manipulation of this function can lead to integer overflow. The attack can be initiated remotely. The exploit has been...
SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2026:1408-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1408-1 advisory. - CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. - CVE-2025-61144: Fixed stack overflow in...
EUVD-2026-15960
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error...