Lucene search
K

15 matches found

RedHat Linux
RedHat Linux
added 2024/08/07 11:17 a.m.9 views

libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tif_dirread.c

ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf...

8.8CVSS7.7AI score0.03969EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:3391-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.041EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.42 views

EulerOS Virtualization 3.0.6.6 : libtiff (EulerOS-SA-2020-2448)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function of tifdir.c. Remote attackers...

8.8CVSS7.1AI score0.03969EPSS
Exploits2References4
Veracode
Veracode
added 2018/09/03 5:30 a.m.36 views

Denial Of Service (DoS)

libtiff.so is susceptible to denial of service DoS. The vulnerability is possible because the ChopUpSingleUncompressedStrip function allocates memory without considering the size of the file, leading to the attack if a malicious TIFF file is input. This CVE is different from CVE-2018-15209...

8.8CVSS8.2AI score0.03969EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2018/09/03 12:0 a.m.27 views

LibTIFF ChopUpSingleUncompressedStrip Function Denial of Service Vulnerability

Libtiff is a library for reading and writing Tagged Image File Format abbreviated TIFF files. A denial of service vulnerability exists in the LibTIFF ChopUpSingleUncompressedStrip function. A remote attacker can exploit this vulnerability to cause a denial of service via a specially crafted TIFF...

8.8CVSS6.9AI score0.02647EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/09/02 3:29 a.m.32 views

CVE-2018-16335

newoffsets handling in ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a...

8.8CVSS7AI score0.02647EPSS
Exploits0References1
OSV
OSV
added 2018/09/02 3:29 a.m.1 views

DEBIAN-CVE-2018-16335

newoffsets handling in ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a...

8.8CVSS8.1AI score0.02647EPSS
Exploits0References1
OSV
OSV
added 2018/09/02 3:29 a.m.4 views

UBUNTU-CVE-2018-16335

newoffsets handling in ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a...

8.8CVSS7AI score0.02647EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/08/08 10:19 p.m.40 views

CVE-2018-15209

ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf...

8.8CVSS6.6AI score0.03969EPSS
Exploits1References2
Prion
Prion
added 2018/08/08 4:29 a.m.21 views

Heap overflow

ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf...

6.8CVSS9AI score0.03969EPSS
Exploits1References3Affected Software2
Debian CVE
Debian CVE
added 2018/08/08 4:0 a.m.34 views

CVE-2018-15209

ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf...

8.8CVSS8.3AI score0.03969EPSS
Exploits1
Cvelist
Cvelist
added 2018/08/08 4:0 a.m.27 views

CVE-2018-15209

ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf...

9.1AI score0.03969EPSS
Exploits1References3
CNVD
CNVD
added 2018/08/08 12:0 a.m.2 views

LibTIFF Denial of Service Vulnerability (CNVD-2018-14916)

Libtiff is a library for reading and writing Tagged Image File Format abbreviated TIFF files. A denial of service vulnerability exists in ChopUpSingleUncompressedStrip in tifdirread.c in LibTIFF 4.0.9. A remote attacker could exploit this vulnerability via specially crafted TIFF files to cause a...

8.8CVSS7.8AI score0.03969EPSS
Exploits1References1
OSV
OSV
added 2017/07/26 8:29 a.m.32 views

CVE-2017-11613

In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, tdimagelength is not checked. The value of tdimagelength can be directly controlled by an input file. In the...

6.5CVSS6.4AI score
Exploits0References6
Debian CVE
Debian CVE
added 2017/07/26 8:0 a.m.40 views

CVE-2017-11613

In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, tdimagelength is not checked. The value of tdimagelength can be directly controlled by an input file. In the...

6.5CVSS7.4AI score0.02748EPSS
Exploits0
Rows per page
Query Builder