12 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-40745
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service application crash or possibly execute an arbitrary...
Important: libtiff
Issue Overview: Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...
ALSA-2024:2289 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: infinite loop via a crafted TIFF file CVE-2022-40090 libtiff: segmentation fault in Fax3Encode in libtiff/tiffax3.c CVE-2023-3618 libtiff: integer overflow in tiffcp....
SUSE-SU-2024:0973-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2023-41175: Fixed potential integer overflow in raw2tiff.c bsc1214686. - CVE-2023-38288: Fixed potential integer overflow in raw2tiff.c bsc1213590. - CVE-2023-40745: Fixed integer overflow in tiffcp.c bsc1214687...
Updated libtiff packages fix security vulnerabilities
LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service application crash or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow. CVE-2023-40745 A vulnerability was found in libtiff due to...
SUSE-SU-2024:0915-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2023-41175: Fixed potential integer overflow in raw2tiff.c bsc1214686. - CVE-2023-38288: Fixed potential integer overflow in raw2tiff.c bsc1213590. - CVE-2023-40745: Fixed integer overflow in tiffcp.c bsc1214687. - CVE-2015-8668: Fixed...
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1148)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5567-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5567-1 [email protected] https://www.debian.org/security/ Aron Xu November 27, 2023 https://www.debian.org/security/faq - -...
CVE-2023-40745 affecting package libtiff for versions less than 4.6.0-1
CVE-2023-40745 affecting package libtiff for versions less than 4.6.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-40745
LibTIFF is affected by CVE-2023-40745 due to an integer overflow in the library that can trigger a heap-based buffer overflow when processing crafted TIFF images. This can lead to remote denial of service (application crash) and, in some reports, may allow arbitrary code execution. Related adviso...
Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-364)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-364 advisory. LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that...
Debian: Security Advisory (DLA-3513-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...