Astra Linux - уязвимость в tiff

A buffer overflow in LibTiff v4.0.10 allows attackers to cause a denial of service through the “TIFFVGetField” function in the component ‘libtiff/tifdir.c’...

JLSEC-2025-307 A null pointer dereference issue was found in Libtiff's tif_dir.c file

A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...

libtiff: NULL pointer dereference in tif_dirinfo.c

A null pointer dereference flaw was found in Libtiff via tifdirinfo.c. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash,...

OESA-2023-1402 libtiff security update

This libtiff provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libti...

SUSE CVE-2006-0405

The TIFFFetchShortPair function in tifdirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service application crash via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function...

SUSE CVE-2012-5581

Stack-based buffer overflow in tifdir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image...

SUSE CVE-2016-3632

The TIFFVGetField function in tifdirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service out-of-bounds write or execute arbitrary code via a crafted TIFF image...

DEBIAN-CVE-2018-16335

newoffsets handling in ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a...

DEBIAN-CVE-2018-10963

The TIFFWriteDirectorySec function in tifdirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service assertion failure and application crash via a crafted file, a different vulnerability than CVE-2017-13726...

UBUNTU-CVE-2017-9403

In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tifdirread.c, which allows attackers to cause a denial of service via a crafted file...

Silicon Graphics LibTIFF tif_dirread.c File Denial of Service Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in the tifdirread.c file in Silicon Graphics LibTIFF version...

LibTIFF 'tif_dirread.c' Denial of Service Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A denial of service vulnerability exists in LibTIFF 'tifdirread.c', which can be exploited b...

Silicon Graphics LibTiff Denial of Service Vulnerability (CNVD-2016-02225)

Silicon Graphics LibTiff is the United States Silicon Graphics, Inc. of a read and write TIFF Tagged Image File Format file library. A denial of service vulnerability exists in the TIFFWriteDirectoryTagLongLong8Array function in the tifdirwrite.c file in Silicon Graphics LibTiff 4.0.6 and earlier...

security flaw

Vulnerability in tifdirread.c for libtiff allows remote attackers to cause a denial of service application crash via a TIFF image that causes a divide-by-zero error when the number of row bytes is zero, a different vulnerability than CVE-2005-2452...