MiracleLinux 7 : libtiff-4.0.3-32.el7 (AXSA:2019-4125:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4125:01 advisory. libtiff: buffer overflow in gif2tiff CVE-2016-3186 libtiff: Heap-based buffer overflow in the cpSeparateBufToContigBuf function resulting in a denia...

Linux Distros Unpatched Vulnerability : CVE-2016-3186

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service application crash via a crafte...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.10.9)

The version of AOS installed on the remote host is prior to 5.10.9. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.10.9 advisory. - Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.16)

The version of AOS installed on the remote host is prior to 5.16. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.16 advisory. - Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code...

Mageia: Security Advisory (MGASA-2016-0349)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2527-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libtiff security update

CentOS Errata and Security Advisory CESA-2019:2053 An update for libtiff is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Debian: Security Advisory (DLA-693-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 693-1] tiff security update

Package : tiff Version : 4.0.2-6+deb7u7 CVE ID : CVE-2014-8128 CVE-2015-7554 CVE-2015-8668 CVE-2016-3186 CVE-2016-3619 CVE-2016-3620 CVE-2016-3621 CVE-2016-3631 CVE-2016-3632 CVE-2016-3633 CVE-2016-3634 CVE-2016-5102 CVE-2016-5318 CVE-2016-5319 CVE-2016-5652 CVE-2016-6223 CVE-2016-8331 Debian Bug...

openSUSE Security Update : tiff (openSUSE-2016-1122)

This update for tiff fixes the following issues : - CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for invalid images bsc964225 - CVE-2016-3186: Buffer overflow in gif2tiff bnc973340. - CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat bsc98735...

SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2016:2271-1)

This update for tiff fixes the following issues : - CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for invalid images bsc964225 - CVE-2016-3186: Buffer overflow in gif2tiff bnc973340. - CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat bsc98735...

FreeBSD : tiff -- denial of service (42ecf370-4aa4-11e6-a7bd-14dae9d210b8)

Aladdin Mubaied reports : Buffer-overflow in gif2tiff utility %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2016 Jacques Vidrine and contributors Redistribution and use in...

openSUSE Security Update : tiff (openSUSE-2016-489)

tiff was updated to fix one security issue. This security issue was fixed : - CVE-2016-3186: Buffer overflow in gif2tiff bsc973340. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

CVE-2016-3186

CVE-2016-3186 is a LibTIFF vulnerability: a buffer overflow in the readextension function of gif2tiff.c allows a crafted GIF file to crash the application (DoS). Connected sources confirm the issue in LibTIFF 4.0.6 and document related advisories (ALAS2-2019-1327, ALAS-2019-1306, Debian and CentO...

openSUSE Security Update : tiff (openSUSE-2016-478)

tiff was updated to fix one security issue. This security issue was fixed : - CVE-2016-3186: Buffer overflow in gif2tiff bsc973340. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...