Lucene search
+L

67 matches found

RedhatCVE
RedhatCVE
added 3 days ago7 views

CVE-2026-61863

A flaw was found in ImageMagick. When processing a Tagged Image File Format TIFF image, a small memory leak can occur if the TIFF encoder is unable to create a temporary file. This can lead to a gradual consumption of system memory, potentially impacting the availability of the application...

7.5CVSS6AI score0.00187EPSS
Exploits0References5
NVD
NVD
added 2026/06/25 8:17 p.m.12 views

CVE-2026-46602

The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption...

7.5CVSS0.00339EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/05/29 12:0 a.m.20 views

compat-libtiff3 security update

An update is available for compat-libtiff3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff3 package provides libtiff 3, an older version of libtiff...

7.8CVSS6.2AI score0.00553EPSS
Exploits0
OSV
OSV
added 2026/05/22 10:18 a.m.4 views

CVE-2026-5755 Denial of service via crafted TIFF file upload

Mattermost versions 11.6.x = 11.6.0, 11.5.x = 11.5.2, 11.5.x = 11.5.3, 11.4.x = 11.4.4, 10.11.x = 10.11.14 fail to validate the TIFF IFD offset in the image header before allocating memory, which allows authenticated users with file upload or posting permissions to cause a denial of service serve...

6.5CVSS6AI score0.00245EPSS
Exploits0References3
Fedora
Fedora
added 2026/05/11 1:3 a.m.14 views

[SECURITY] Fedora 43 Update: SDL3_image-3.4.4-1.fc43

Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This is a simple library to load images of various formats as SDL surfaces. It can load BMP, GIF, JPEG, LBM, PCX, PNG, PNM PPM/PGM/PBM, QOI, TGA, XCF,...

7.1CVSS5.9AI score0.00262EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.10 views

PT-2026-28086

Name of the Vulnerable Software and Affected Versions LibTIFF affected versions not specified Description A specially designed TIFF file can trigger an out-of-memory error or excessive resource usage during image decoding. The issue arises from the image decoding process attempting to allocate up...

9.8CVSS6.3AI score0.01903EPSS
Exploits22References189
FreeBSD
FreeBSD
added 2026/03/24 12:0 a.m.12 views

(lib)tiff -- Integer Overflow or Wraparound

PrymEvol and Quang Luong reports: A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrec...

7.8CVSS6.1AI score0.00553EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/10 12:0 a.m.6 views

RHEL 8 : libtiff (RHSA-2025:19947)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:19947 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Libtiff...

8.8CVSS6.1AI score0.00739EPSS
Exploits0References4
OSV
OSV
added 2025/11/02 9:8 a.m.6 views

RLSA-2025:19156 Important: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Libtiff Write-What-Where CVE-2025-9900 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

8.8CVSS6.9AI score0.00739EPSS
Exploits0References2
Snyk
Snyk
added 2025/08/25 3:54 p.m.5 views

Heap-based Buffer Overflow

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.1CVSS6.6AI score0.00181EPSS
Exploits1References2
OSV
OSV
added 2025/07/29 1:38 p.m.7 views

RLSA-2025:4658 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service CVE-2017-17095 For more details about the security issues, including the impact, a CVSS...

7.5CVSS7.7AI score0.10639EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/05/07 9:46 a.m.10 views

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.9AI score0.10639EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2025/05/07 12:0 a.m.23 views

Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service CVE-2017-17095 For more details about the security issues, including the impact, a CVSS...

8.8CVSS8.9AI score0.10639EPSS
Exploits1References4
OSV
OSV
added 2025/05/07 12:0 a.m.13 views

ALSA-2025:4658 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service CVE-2017-17095 For more details about the security issues, including the impact, a CVSS...

8.8CVSS7.1AI score0.10639EPSS
Exploits1References4
OSV
OSV
added 2024/11/08 3:56 p.m.16 views

RLSA-2024:8833 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: NULL pointer dereference in tifdirinfo.c CVE-2024-7006 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.5CVSS7.8AI score0.01516EPSS
Exploits0References2
Fedora
Fedora
added 2024/10/25 2:9 a.m.31 views

[SECURITY] Fedora 40 Update: libtiff-4.6.0-5.fc40.1

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...

7.5CVSS7.1AI score0.02187EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/07 12:0 a.m.32 views

RHEL 8 : libtiff (RHSA-2024:5079)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5079 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Heap-base...

8.8CVSS7.2AI score0.03969EPSS
Exploits2References11
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.3 views

SUSE CVE-2010-4665

Integer overflow in the ReadDirectory function in tiffdump.c in tiffdump in LibTIFF before 3.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF file containing a directory data structure with many directory entri...

4.3CVSS7.7AI score0.02621EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.4 views

SUSE CVE-2018-10804

ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c...

4CVSS9.2AI score0.02045EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:35 a.m.3 views

SUSE CVE-2022-0284

A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format TIFF image to convert it into a PICON file format. This issue can potentially lead to a...

6.1CVSS6.4AI score0.00552EPSS
Exploits1References6
Rows per page
Query Builder