57 matches found
Astra Linux – Vulnerability in TIF format
The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...
CVE-2026-31797 iccDEV has a heap out-of-bounds read in CTiffImg::ReadLine()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap out-of-bounds read in CTiffImg::ReadLine when iccApplyProfiles processes a crafted TIFF image, causing memory disclosure or crash. This vulnerability is fixed in 2.3.1.5...
EUVD-2016-10338
Malware in sbrugna...
EUVD-2017-6724
Malware in sbrugna...
EUVD-2017-7191
Malware in sbrugna...
EUVD-2017-17866
Malware in sbrugna...
EUVD-2018-0070
Malware in sbrugna...
CVE-2023-46587
Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...
The vulnerability of the Kofax PowerPDF software, which is used for creating, converting, editing, and publishing PDF files, relates to reading data beyond the buffer in memory. This vulnerability allows an attacker to execute arbitrary code.
The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created TIF file...
CVE-2023-46587
Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...
CVE-2023-46587
Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...
CVE-2023-46587
Affected software: XnView Classic v2.51.5. The issue is a Buffer Overflow in the handling of TIF files, enabling a local attacker to execute arbitrary code. Root cause is an overflow in processing crafted TIF input. Impact is arbitrary code execution with local access. Remediation: update to a ne...
SUSE CVE-2009-5022
Heap-based buffer overflow in tifojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file...
SUSE CVE-2018-17795
The function t2pwritepdf in tiff2pdf.c in LibTIFF 4.0.9 and earlier allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935...
CVE-2022-42416
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
AZL-9734 CVE-2022-1623 affecting package libtiff for versions less than 4.4.0-1
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tiflzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa...
CVE-2021-44017
A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The Image.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted TIF files. An attacker could leverage this vulnerability to...
CVE-2020-18774
A float point exception in the printLong function in tagsint.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...
CVE-2020-18773
An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...
CVE-2020-18773
An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...