11 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-30774
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAGINKNAMES and TIFFTAGNUMBEROFINKS values...
Advisory ROSA-SA-2025-2657
software: libtiff 4.1.0 OS: ROSA-CHROME packageevrstring: libtiff-4.1.0 CVE-ID: CVE-2022-4645 BDU-ID: 2023-05401 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the tiffcrop utility tools/tiffcp.c:948 of the libtiff library involves reading beyond buffer boundaries in memory. Exploitation of the...
BELL-CVE-2023-30774
Bulletin has no description...
Medium: libtiff
Issue Overview: libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage in tiffcrop cause heap-buffer-overflow and SEGV. CVE-2023-25433 A vulnerability was found in libtiff library. This security flaw causes a heap...
Amazon Linux 2 : libtiff (ALAS-2023-2274)
The version of libtiff installed on the remote host is prior to 4.0.3-35. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2274 advisory. libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size afte...
Medium: libtiff
Issue Overview: A vulnerability was found in libtiff library. This security flaw causes a heap buffer overflow issue via TIFFTAGINKNAMES and TIFFTAGNUMBEROFINKS values. CVE-2023-30774 Affected Packages: libtiff Issue Correction: Run yum update libtiff or yum update --advisory ALAS-2023-1847 to...
Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-230)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-230 advisory. LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, th...
AZL-44023 CVE-2023-30774 affecting package openjpeg2 2.3.1-12
A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAGINKNAMES and TIFFTAGNUMBEROFINKS values...
CVE-2023-30774
CVE-2023-30774 affects LibTIFF in libtiff: a heap-based buffer overflow caused by TIFFTAG_INKNAMES/ TIFFTAG_NUMBEROFINKS. Reported in MiracleLinux AXSA plugin; Nessus descriptions confirm a heap overflow that could crash the affected TIFF processing. No explicit remediation or patched version is ...
Moderate: Red Hat Security Advisory: libtiff security update
An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
ALSA-2023:2340 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: heap Buffer overflows in tiffcrop.c CVE-2022-3570 libtiff: out-of-bounds write in TIFFmemcpy in libtiff/tifunix CVE-2022-3597 libtiff: out-of-bounds write in...