20 matches found
Alibaba Cloud Linux 3 : 0057: libtiff (ALINUX3-SA-2024:0057)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0057 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2056: Divide By Zero error in...
Linux Distros Unpatched Vulnerability : CVE-2022-2520
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted...
CentOS 9 : libtiff-4.4.0-5.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libtiff-4.4.0-5.el9 build changelog. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that...
BELL-CVE-2022-2520 CVE-2022-2520 does not affect BellSoft software
Bulletin has no description...
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2298)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5333-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5333-1 [email protected] https://www.debian.org/security/ Aron Xu January 29, 2023 https://www.debian.org/security/faq -...
AlmaLinux 9 : libtiff (ALSA-2023:0302)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0302 advisory. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff...
RLSA-2023:0302 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at tiffcrop.c CVE-2022-2519...
ALSA-2023:0302 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at tiffcrop.c CVE-2022-2519...
AlmaLinux 8 : libtiff (ALSA-2023:0095)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0095 advisory. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff...
Moderate: Red Hat Security Advisory: libtiff security update
An update for libtiff is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
libtiff security update
An update is available for libtiff. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff packages contain a library of functions for manipulating Tagged...
RLSA-2023:0095 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at tiffcrop.c CVE-2022-2519...
Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at tiffcrop.c CVE-2022-2519...
Security fix for the ALT Linux 10 package libtiff version 4.4.0-alt2
4.4.0-alt2 built Dec. 27, 2022 Alexander Danilov in task 311968 Dec. 18, 2022 Vladimir D. Seleznev - Applied SUSE patches fixed tiff-CVE-2022-2056, CVE-2022-2057, CVE-2022-2058, CVE-2022-2519, CVE-2022-2520, CVE-2022-2521, CVE-2022-3597, CVE-2022-3598, CVE-2022-3599, CVE-2022-3626, CVE-2022-3627,...
Updated libtiff packages fix security vulnerability
There is a double free or corruption in rotateImage at tiffcrop.c:8839 found in libtiff 4.4.0rc1. CVE-2022-2519 A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted input. CVE-2022-2520 It w...
SUSE-SU-2022:3690-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2022-2519: Fixed a double free in rotateImage bsc1202968. - CVE-2022-2520: Fixed a assertion failure in rotateImage bsc1202973. - CVE-2022-2521: Fixed invalid free in TIFFClose bsc1202971. - CVE-2022-2867: Fixed out of bounds read and write i...
SUSE: Security Advisory (SUSE-SU-2022:3679-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-2520
creationtimestamp| type| source ---|---|--- 2022-08-31 20:37:03+00:00| seen| https://t.me/cibsecurity/49114...
CVE-2022-2520
Summary: CVE-2022-2520 affects LibTIFF 4.4.0rc1, where a sysmalloc assertion in rotateImage() (tiffcrop.c:8621) can cause a crash when processing crafted input. The connected advisories confirm additional related flaws in the same library (e.g., CVE-2022-2519, CVE-2022-2521, CVE-2022-2868, CVE-20...