15 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8784
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The NeXTDecode function in tifnext.c in LibTIFF allows remote attackers to cause a denial of service out-of-bounds write via a crafted TIFF image, as demonstrat...
K89096577: LibTIFF vulnerabilities CVE-2016-5314 and CVE-2015-8784
Security Advisory Description CVE-2016-5314 Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by...
[SECURITY] [DLA 880-1] tiff3 security update
Package : tiff3 Version : 3.9.6-11+deb7u4 CVE ID : CVE-2015-8781 CVE-2015-8782 CVE-2015-8783 CVE-2015-8784 CVE-2016-9533 CVE-2016-9534 CVE-2016-9535 tiff3 is affected by multiple issues that can result at least in denial of services of applications using libtiff4. Crafted TIFF files can be provid...
Amazon Linux: Security Advisory (ALAS-2016-734)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : libtiff (ALAS-2016-733)
Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. CVE-2014-9655 , CVE-2015-1547 ,...
Important: libtiff
Issue Overview: Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. CVE-2014-9655,...
CentOS Update for libtiff CESA-2016:1546 centos7
Check the version of libtiff SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882532";...
CentOS Update for libtiff CESA-2016:1547 centos6
Check the version of libtiff SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882531";...
Scientific Linux Security Update : libtiff on 7.x i686/x86_64 (2016:1546)
The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2016:1546-1 advisory. Security Fixes: Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption...
RedHat Update for libtiff RHSA-2016:1546-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS 6 : libtiff (CESA-2016:1547)
The remote CentOS Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2016:1547 advisory. - Heap-based buffer overflow in the PackBitsPreEncode function in tifpackbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to...
Scientific Linux Security Update : libtiff on 6.x i686/x86_64 (2016:1547)
The remote Scientific Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2016:1547-1 advisory. Security Fixes: Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption...
OracleVM 3.3 / 3.4 : libtiff (OVMSA-2016-0093)
The remote OracleVM system is missing necessary patches to address critical security updates : - Update patch for CVE-2014-8127 - Related: 1335099 - Fix patches for CVE-2016-3990, CVE-2016-5320 - Related: 1335099 - Add patches for CVEs : - CVE-2016-3632 CVE-2016-3945 CVE-2016-3990 - CVE-2016-3991...
CVE-2015-8784
LibTIFF's NeXTDecode path (tif_next.c) is vulnerable to an out-of-bounds write via a crafted TIFF image, enabling a remote attacker to trigger a denial of service. The CVE-2015-8784 issue is confirmed across multiple advisories: Debian/Ubuntu have patched libtiff in security updates; Red Hat/Cent...
Debian DLA-405-1 : tiff security update
Several security flaws have been found and solved in libtiff, a library that provides support for handling Tag Image File Format TIFF. These flaws concern out of bounds reads and writes in the LogL16Decode, LogLuvDecode24, LogLuvDecode32, LogLuvDecodeTile, LogL16Encode, LogLuvEncode24,...