MiracleLinux 3 : libtiff-3.8.2-18.AXS3 (AXSA:2012-1055:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-1055:03 advisory. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file...

MiracleLinux 4 : libtiff-3.9.4-9.AXS4 (AXSA:2012-1046:03)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-1046:03 advisory. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file...

Denial Of Service (DoS) And Remote Code Execution (RCE)

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially-crafted TIFF file that,...

Denial Of Service (DoS) And Remote Code Execution (RCE)

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially-crafted TIFF file that,...

Denial Of Service (DoS) And Remote Code Execution (RCE)

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially-crafted TIFF file that,...

Oracle: Security Advisory (ELSA-2012-1590)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux: Security Advisory (ALAS-2012-147)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for libtiff FEDORA-2013-15673

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2589-1 (tiff - buffer overflow)

The tiff library for handling TIFF image files contained a stack-based buffer overflow, potentially allowing attackers who can submit such files to a vulnerable system to execute arbitrary code. OpenVAS Vulnerability Test $Id: deb25891.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from...

Amazon Linux AMI : libtiff (ALAS-2012-147)

A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially crafted TIFF file that, when opened, could cause an application using libtiff to crash or, possibly, execute arbitrary code with t...

Fedora Update for libtiff FEDORA-2013-7369

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 11.2 Security Update : libtiff (SAT Patch Number 7216)

Various memory corruption vulnerabilities have been fixed in libtiff. CVE-2012-4447 / CVE-2012-4564 / CVE-2012-5581 have been assigned to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update...

CVE-2012-5581

Stack-based buffer overflow in tifdir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image...

CVE-2012-5581

CVE-2012-5581 : LibTIFF vulnerability—stack-based buffer overflow in tif_dir.c before 4.0.2 triggered by a crafted DOTRANGE tag in TIFF images. Affects LibTIFF versions prior to 4.0.2; can cause a crash and potentially allow code execution. Remediation: upgrade LibTIFF to 4.0.2 or newer. Notes: c...

Fedora Update for libtiff FEDORA-2012-20404

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for libtiff FEDORA-2012-20446

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for libtiff MDVSA-2012:184 (libtiff)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 16 : libtiff-3.9.7-1.fc16 (2012-20404)

Update to libtiff 3.9.7 includes previously-added security fixes - Add patches for CVE-2012-4447, CVE-2012-4564, CVE-2012-5581 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean...

Mandriva Linux Security Advisory : libtiff (MDVSA-2012:184)

A vulnerability was found and corrected in libtiff : A stack-based buffer overflow was found in the way libtiff handled DOTRANGE tags. An attacker could use this flaw to create a specially crafted TIFF file that, when opened, would cause an application linked against libtiff to crash or, possibly...

CentOS Update for libtiff CESA-2012:1590 centos5

Check for the Version of libtiff OpenVAS Vulnerability Test CentOS Update for libtiff CESA-2012:1590 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...