16 matches found
KB5066837: Windows 10 LTS 1507 Security Update (October 2025)
The remote Windows host is missing security update 5066837. It is, therefore, affected by multiple vulnerabilities - tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual til...
EUVD-2016-10341
Malware in sbrugna...
EUVD-2005-2453
Malware in sbrugna...
SUSE CVE-2016-2329
libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted TIFF file, related to th...
libtiff: Predictor heap-buffer-overflow
tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."...
DEBIAN-CVE-2016-9535
tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."...
CVE-2016-9535
tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."...
CVE-2016-9535
tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."...
CVE-2016-9535
tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."...
ALPINE-CVE-2016-2329
libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted TIFF file, related to th...
UBUNTU-CVE-2016-2329
libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted TIFF file, related to th...
Ubuntu 4.10 / 5.04 : tiff vulnerability (USN-156-1)
Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the 'YCbCr subsampling' value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which caused the program that uses the TIFF library to crash. This leads to a...
Mandrake Linux Security Advisory : libtiff (MDKSA-2005:142)
Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the 'YCbCr subsampling' value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. The updated packag...
libtiff TIFF graphics library DoS
Crash on zero YCbCr subsampling value...
CVE-2005-2452
libtiff up to 3.7.0 allows remote attackers to cause a denial of service application crash via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in 1 tifstrip.c and 2 tiftile.c, a different vulnerability than CVE-2004-0804...
CVE-2005-2452
libtiff up to 3.7.0 allows remote attackers to cause a denial of service application crash via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in 1 tifstrip.c and 2 tiftile.c, a different vulnerability than CVE-2004-0804...