Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2015-8870

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service heap-based buffer over-read, or possibly obtai...

7.4CVSS7.7AI score0.02EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2018:3879-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.25183EPSS
Exploits7References14
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2017-1020)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.04767EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2017-1019)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.04767EPSS
Exploits3References2
ALT Linux
ALT Linux
added 2019/04/09 12:0 a.m.86 views

Security fix for the ALT Linux 10 package libtiff version 4.0.10.0.57.f9fc01c3-alt1

April 9, 2019 Vladimir D. Seleznev 4.0.10.0.57.f9fc01c3-alt1 - Updated to v4.0.10-57-gf9fc01c3 ALT 36575, 34677. - Applied SUSE patches: + tiff-4.0.3-seek.patch; + tiff-4.0.3-compress-warning.patch; + tiff-CVE-2018-12900.patch. - Built with support of: + libjbig; + libwebp; + libzstd. - Fixes: +...

9.3CVSS8.5AI score0.25183EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.25 views

EulerOS 2.0 SP2 : libtiff (EulerOS-SA-2017-1020)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.37 views

EulerOS 2.0 SP1 : libtiff (EulerOS-SA-2017-1019)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2017/03/07 12:0 a.m.37 views

Amazon Linux AMI : libtiff / compat-libtiff3 (ALAS-2017-802)

Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. CVE-2016-9533 , CVE-2016-9534 ,...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.40 views

RedHat Update for libtiff RHSA-2017:0225-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.04767EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/02/03 12:0 a.m.45 views

Scientific Linux Security Update : libtiff on SL6.x, SL7.x i386/x86_64 (20170201)

Security Fixes : - Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. CVE-2016-9533,...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2017/02/02 12:0 a.m.92 views

RHEL 6 / 7 : libtiff (RHSA-2017:0225)

An update for libtiff is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References17
Tenable Nessus
Tenable Nessus
added 2017/02/02 12:0 a.m.78 views

CentOS 6 / 7 : libtiff (CESA-2017:0225)

An update for libtiff is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References10
Prion
Prion
added 2016/12/06 6:59 p.m.33 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-8870. Reason: This candidate is a duplicate of CVE-2015-8870. The CVE-2014-9299 ID originated from an unrelated and invalid assignment, and this ID was inadvertently used for the CVE-2015-8870 issue. Notes: All CVE users shou...

6.9AI score0.02EPSS
Exploits0
CVE
CVE
added 2016/12/06 6:0 p.m.46 views

CVE-2014-9299

This CVE entry is rejected and not used; reference CVE-2015-8870.

8AI score
Exploits0
CVE
CVE
added 2016/12/06 6:0 p.m.167 views

CVE-2015-8870

CVE-2015-8870 describes an integer overflow in LibTIFF’s tools/bmp2tiff.c, fixed in LibTIFF 4.0.4. A crafted BMP file with specific RLE4/RLE8 width/length values can trigger a heap-based buffer over-read, enabling a denial of service and potentially leaking memory contents. The vulnerability affe...

7.4CVSS8.6AI score0.02EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2016/12/06 6:0 p.m.34 views

CVE-2015-8870

Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service heap-based buffer over-read, or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file...

7.4CVSS8.4AI score0.02EPSS
Exploits0
Rows per page
Query Builder