Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.21 views

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS6.7AI score0.01188EPSS
Exploits15References17
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.27 views

EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2023-2729)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.19 views

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-2694)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to cra...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.24 views

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-2652)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to cra...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/12/15 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2023:4869-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.01684EPSS
Exploits5References8
OSV
OSV
added 2023/12/14 3:26 p.m.11 views

SUSE-SU-2023:4869-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2023-2731: Fix null pointer deference in LZWDecode bsc1211478. - CVE-2023-1916: Fix out-of-bounds read in extractImageSection bsc1210231. - CVE-2023-26965: Fix heap-based use after free in loadImage bsc1212398. - CVE-2022-40090: Fix infinite...

6.5CVSS6.5AI score0.01684EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2023/12/13 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2023:4736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.01684EPSS
Exploits5References8
Oracle linux
Oracle linux
added 2023/11/11 12:0 a.m.40 views

libtiff security update

4.4.0-10 - Fix CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 - Resolves: CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 4.4.0-9 - Fix CVE-2023-2731 - Resolves: CVE-2023-2731...

6.5CVSS7AI score0.01124EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2023/11/07 8:13 a.m.59 views

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.8AI score0.10639EPSS
Exploits5References7
AlmaLinux
AlmaLinux
added 2023/11/07 12:0 a.m.38 views

Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: null pointer dereference in LZWDecode in libtiff/tiflzw.c CVE-2023-2731 libtiff: tiffcrop: null pointer dereference in TIFFClose CVE-2023-3316 libtiff: memory leak in...

6.5CVSS7.1AI score0.01124EPSS
Exploits4References12
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2760)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.00427EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2729)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.00427EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/09/08 12:0 a.m.29 views

Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-329)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-329 advisory. A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References4
Amazon
Amazon
added 2023/09/07 12:0 a.m.6 views

Medium: libtiff

Issue Overview: A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file, resulting in a...

5.5CVSS8.8AI score0.00427EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2694)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.00427EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2652)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.00427EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2023/08/15 9:2 p.m.73 views

USN-6290-1: LibTIFF vulnerabilities

It was discovered that LibTIFF could be made to write out of bounds when processing certain malformed image files with the tiffcrop utility. If a user were tricked into opening a specially crafted image file, an attacker could possibly use this issue to cause tiffcrop to crash, resulting in a...

6.5CVSS7AI score0.01188EPSS
Exploits7
CBLMariner
CBLMariner
added 2023/06/13 8:2 p.m.21 views

CVE-2023-2731 affecting package libtiff 4.5.0-2

CVE-2023-2731 affecting package libtiff 4.5.0-2. A patched version of the package is available...

5.5CVSS7.5AI score0.00427EPSS
Exploits1
CBLMariner
CBLMariner
added 2023/06/02 9:37 p.m.17 views

CVE-2023-2731 affecting package libtiff for versions less than 4.5.0-3

CVE-2023-2731 affecting package libtiff for versions less than 4.5.0-3. A patched version of the package is available...

5.5CVSS6.3AI score0.00427EPSS
Exploits1
OSV
OSV
added 2023/05/17 12:0 a.m.27 views

CVE-2023-2731

A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file, resulting in a program crash or...

5.5CVSS6.7AI score0.00427EPSS
Exploits1References7
Rows per page
Query Builder