8 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-11335
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes...
Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2021-1285)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : compat-libtiff3 (EulerOS-SA-2021-1062)
According to the versions of the compat-libtiff3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service heap-based buffer over-read and buffer overflow o...
Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2021-1062)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2018:1179-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2016-9453: The t2preadwritepdfimagetile function allowed remote attackers to cause a denial of service out-of-bounds write and crash or possibly execute arbitrary code via a JPEG file with a TIFFTAGJPEGTABLES of length one bsc1011107. -...
[SECURITY] [DSA 4100-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4100-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 27, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1094-1] tiff3 security update
Package : tiff3 Version : 3.9.6-11+deb7u8 CVE ID : CVE-2017-11335 Debian Bug : 868513 A heap based buffer overflow has been discovered in the tiff2pdf utility, part of the Tag Image File Format TIFF library. A PlanarConfig=Contig image can cause an out-of-bounds write related to the ZIPDecode...
CVE-2017-11335
CVE-2017-11335 is a LibTIFF heap-based buffer overflow in tools/tiff2pdf.c (LibTIFF 4.0.8) triggered by a PlanarConfig=Contig TIFF image. The overflow occurs via the ZIPDecode path in tif_zip.c and can cause remote denial of service or arbitrary code execution when processing crafted input. The C...