67 matches found
DEBIAN-CVE-2010-2597
The TIFFVStripSize function in tifstrip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service application crash via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler...
[SECURITY] Fedora 13 Update: libtiff-3.9.4-1.fc13
The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...
DEBIAN-CVE-2010-2065
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow...
LibTIFF TIFFFetchData Function Integer Overflow (CVE-2006-2025)
Tagged Image File Format, TIFF, is a file format used primarily for storing digital images, including photographs and line art. TIFF is a popular format for high colour depth images, along with JPEG and PNG. It is widely supported by applications that handle images, such as browsers and also imag...
Debian DSA-1632-1 : tiff - buffer underflow
Drew Yao discovered that libTIFF, a library for handling the Tagged Image File Format, is vulnerable to a programming error allowing malformed tiff files to lead to a crash or execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...
security flaw
Integer overflow in the TIFFFetchStripThing function in tifdirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overfl...
security flaw
The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service crash via a crafted TIFF file...