13 matches found
SUSE: Security Advisory (SUSE-SU-2025:0753-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2023-25435
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753. CVE-2023-25435 Note that Nessus relies on...
openSUSE Security Advisory (SUSE-SU-2025:0753-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:0753-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2023-25435: Heap-buffer-overflow in extractContigSamplesShifted8bits in tiffcrop.c bsc1212607. - CVE-2023-52356: Segment fault in libtiff in TIFFReadRGBATileExt leading to denial of service bsc1219213. Other bugfixes: - Fixed tiff build issue...
Photon OS 4.0: Libtiff PHSA-2023-4.0-0417
An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 3.0: Libtiff PHSA-2023-3.0-0607
An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0607. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2023-25435 affecting package libtiff for versions less than 4.5.1-1
CVE-2023-25435 affecting package libtiff for versions less than 4.5.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-25435 affecting package libtiff 4.5.0-3
CVE-2023-25435 affecting package libtiff 4.5.0-3. An upgraded version of the package is available that resolves this issue...
Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-255)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-255 advisory. LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from source...
CVE-2023-25435
A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to a heap-based buffer overflow in the extractContigSamplesShifted8bits function in tools/tiffcrop.c, resulting in a denial of service...
CVE-2023-25435
libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753...
CVE-2023-25435
libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753...
CVE-2023-25435
CVE-2023-25435 affects libtiff 4.5.0, with a heap-buffer-overflow in extractContigSamplesShifted8bits() inside tiffcrop.c:3753. The vulnerability manifests when libtiff processes crafted TIFF images, allowing a local attacker to cause a crash or denial of service by overflowing a heap buffer. Aff...