Lucene search
K

26 matches found

Cloud Foundry
Cloud Foundry
added 2024/03/18 12:0 a.m.24 views

USN-6512-1: LibTIFF vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that LibTIFF could be made to run into an infinite loop. If a user or an automated system were tricked into opening a specially crafted imag...

6.5CVSS6.5AI score0.00805EPSS
Exploits1Affected Software2
Debian
Debian
added 2024/03/11 12:38 p.m.174 views

[SECURITY] [DLA 3758-1] tiff security update

Debian LTS Advisory DLA-3758-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA March 11, 2024 https://wiki.debian.org/LTS Package : tiff Version : 4.1.0+git191117-2deb10u9 CVE ID : CVE-2023-3576 CVE-2023-52356 Two vulnerabilities were discovered in tiff, Tag Image Fil...

7.5CVSS6.8AI score0.02187EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.25 views

openSUSE: Security Advisory for tiff (SUSE-SU-2023:4370-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.01124EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.34 views

EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-2918)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...

6.5CVSS6.3AI score0.01124EPSS
Exploits3References5
Debian
Debian
added 2023/11/27 5:4 a.m.32 views

[SECURITY] [DSA 5567-1] tiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5567-1 [email protected] https://www.debian.org/security/ Aron Xu November 27, 2023 https://www.debian.org/security/faq - -...

6.5CVSS7.1AI score0.01131EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/11/24 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-6512-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.4AI score0.00805EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2023/11/23 9:6 p.m.56 views

USN-6512-1: LibTIFF vulnerabilities

It was discovered that LibTIFF could be made to run into an infinite loop. If a user or an automated system were tricked into opening a specially crafted image file, an attacker could possibly use this issue to cause a denial of service. CVE-2022-40090 It was discovered that LibTIFF could be made...

6.5CVSS6.7AI score0.00805EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/11/23 12:0 a.m.32 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : LibTIFF vulnerabilities (USN-6512-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6512-1 advisory. It was discovered that LibTIFF could be made to run into an infinite loop. If a user or an automated system were...

6.5CVSS6.8AI score0.00805EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2023/11/11 12:0 a.m.40 views

libtiff security update

4.4.0-10 - Fix CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 - Resolves: CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 4.4.0-9 - Fix CVE-2023-2731 - Resolves: CVE-2023-2731...

6.5CVSS7AI score0.01124EPSS
Exploits4
OpenVAS
OpenVAS
added 2023/11/09 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-3135)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.01124EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2023/11/07 8:13 a.m.59 views

Moderate: Red Hat Security Advisory: libtiff security update

An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.8AI score0.10639EPSS
Exploits5References7
AlmaLinux
AlmaLinux
added 2023/11/07 12:0 a.m.38 views

Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: null pointer dereference in LZWDecode in libtiff/tiflzw.c CVE-2023-2731 libtiff: tiffcrop: null pointer dereference in TIFFClose CVE-2023-3316 libtiff: memory leak in...

6.5CVSS7.1AI score0.01124EPSS
Exploits4References12
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.28 views

SUSE SLES12 Security Update : tiff (SUSE-SU-2023:4371-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4371-1 advisory. - CVE-2023-38289: Fixed a NULL pointer dereference in raw2tiff bsc1213589. - CVE-2023-38288: Fixed an integer overflow in raw2tiff...

6.5CVSS7AI score0.01124EPSS
Exploits5References24
OpenVAS
OpenVAS
added 2023/11/01 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-3101)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/10/10 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2918)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2023/10/10 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2937)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2023/10/09 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2881)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits2References2
CVE
CVE
added 2023/10/04 6:2 p.m.201 views

CVE-2023-3576

CVE-2023-3576: LibTIFF tiffcrop memory leak vulnerability. A crafted TIFF can trigger a leak in tiffcrop, causing an application crash and DoS. Affected: LibTIFF/tiffcrop. Remediation: upgrade to fixed releases (examples include Debian, AlmaLinux, Cloud Foundry advisories listing updated libtiff/...

5.5CVSS5.8AI score0.00341EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2813)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.01124EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/28 2:36 p.m.29 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance are vulnerable to denial of service due to [CVE-2023-3576]

Summary libtiff is not used directly by IBM App Connect Enterprise Certified Container but is present in one of the DesignerAuthoring images. IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance are vulnerable to denial of service. This bulletin...

5.5CVSS6AI score0.00341EPSS
Exploits0Affected Software1
Rows per page
Query Builder