Lucene search
+L

31 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-26965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 Note that Nessus relies on the...

5.5CVSS6.7AI score0.00376EPSS
Exploits1References2
nessus
nessus
added 2024/09/10 12:0 a.m.14 views

NewStart CGSL MAIN 6.02 : compat-libtiff3 Vulnerability (NS-SA-2024-0055)

The remote NewStart CGSL host, running version MAIN 6.02, has compat-libtiff3 packages installed that are affected by a vulnerability: - A heap use-after-free vulnerability was found in LibTIFF's tiffcrop utility in the loadImage function. This flaw allows an attacker to pass a crafted TIFF image...

5.5CVSS6.8AI score0.00376EPSS
Exploits1References3
nessus
nessus
added 2024/07/24 12:0 a.m.21 views

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS6.7AI score0.01188EPSS
Exploits15References17
openvas
openvas
added 2024/02/09 12:0 a.m.48 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1148)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.01188EPSS
Exploits2References2
nessus
nessus
added 2024/01/16 12:0 a.m.27 views

EulerOS Virtualization 2.9.1 : libtiff (EulerOS-SA-2023-2960)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965...

5.5CVSS6.9AI score0.00376EPSS
Exploits1References2
nessus
nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS Virtualization 2.9.0 : libtiff (EulerOS-SA-2023-2986)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965...

5.5CVSS6.9AI score0.00376EPSS
Exploits1References2
nessus
nessus
added 2024/01/16 12:0 a.m.34 views

EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-2918)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...

6.5CVSS6.3AI score0.01124EPSS
Exploits3References5
openvas
openvas
added 2023/12/15 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2023:4869-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.01684EPSS
Exploits5References8
osv
osv
added 2023/12/14 3:26 p.m.11 views

SUSE-SU-2023:4869-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2023-2731: Fix null pointer deference in LZWDecode bsc1211478. - CVE-2023-1916: Fix out-of-bounds read in extractImageSection bsc1210231. - CVE-2023-26965: Fix heap-based use after free in loadImage bsc1212398. - CVE-2022-40090: Fix infinite...

6.5CVSS6.5AI score0.01684EPSS
Exploits5References11
openvas
openvas
added 2023/12/13 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2023:4736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.01684EPSS
Exploits5References8
oraclelinux
oraclelinux
added 2023/11/11 12:0 a.m.41 views

libtiff security update

4.4.0-10 - Fix CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 - Resolves: CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 4.4.0-9 - Fix CVE-2023-2731 - Resolves: CVE-2023-2731...

6.5CVSS7AI score0.01124EPSS
Exploits4
openvas
openvas
added 2023/11/09 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-3135)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.01188EPSS
Exploits3References2
redhat
redhat
added 2023/11/07 8:13 a.m.60 views

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.8AI score0.10639EPSS
Exploits5References7
almalinux
almalinux
added 2023/11/07 12:0 a.m.39 views

Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: null pointer dereference in LZWDecode in libtiff/tiflzw.c CVE-2023-2731 libtiff: tiffcrop: null pointer dereference in TIFFClose CVE-2023-3316 libtiff: memory leak in...

6.5CVSS7.1AI score0.01124EPSS
Exploits4References12
osv
osv
added 2023/10/18 1:45 p.m.1 views

BELL-CVE-2023-26965

Bulletin has no description...

5.5CVSS7.1AI score0.00376EPSS
Exploits1References1
openvas
openvas
added 2023/10/10 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2918)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
openvas
openvas
added 2023/10/10 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2937)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
amazon
amazon
added 2023/09/20 12:0 a.m.50 views

Medium: libtiff

Issue Overview: The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service invalid read and crash via a crafted tiff image. CVE-2016-5321 Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff...

6.5CVSS7AI score0.02911EPSS
Exploits3
openvas
openvas
added 2023/09/11 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2813)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
cloudfoundry
cloudfoundry
added 2023/08/10 12:0 a.m.33 views

USN-6229-1: LibTIFF vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that LibTIFF was not properly handling variables used to perform memory management operations when processing an image through tiffcrop, which could lead to a heap...

6.5CVSS7.4AI score0.01124EPSS
Exploits4Affected Software1
Rows per page
Query Builder