Lucene search
K

21 matches found

Amazon
Amazon
added 2026/01/21 12:0 a.m.7 views

Medium: libtiff

Issue Overview: LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b. CVE-2022-3598...

6.5CVSS8.2AI score0.00938EPSS
Exploits1
OSV
OSV
added 2025/11/25 10:18 p.m.4 views

JLSEC-2025-304 A vulnerability was found in the libtiff library

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c...

5.5CVSS7.2AI score0.00296EPSS
Exploits0References8
OSV
OSV
added 2025/11/25 10:18 p.m.4 views

JLSEC-2025-284 LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:36...

LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b...

6.5CVSS8.8AI score0.00938EPSS
Exploits1References10
SUSE Linux
SUSE Linux
added 2025/02/28 4:30 p.m.4 views

Security update for tiff

This update for tiff fixes the following issues: CVE-2023-25435: Heap-buffer-overflow in extractContigSamplesShifted8bits in tiffcrop.c bsc1212607. CVE-2023-52356: Segment fault in libtiff in TIFFReadRGBATileExt leading to denial of service bsc1219213. Other bugfixes: Fixed tiff build issue on...

6.1CVSS7.5AI score0.02187EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2023/09/26 9:25 a.m.11 views

libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted16bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/09/26 9:25 a.m.5 views

libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted16bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/09/25 12:0 a.m.6 views

Vulnerability of the extractContigSamplesShifted8bits() function in the LibTIFF library, which allows a hacker to trigger a service failure.

The vulnerability of the extractContigSamplesShifted8bits function tools/tiffcrop.c in the LibTIFF library is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.9AI score0.00421EPSS
Exploits1References13Affected Software6
Microsoft CVE
Microsoft CVE
added 2023/06/26 7:0 a.m.3 views

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753.

...

5.5CVSS7.1AI score0.00345EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/06/21 8:15 p.m.5 views

CVE-2023-25435

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753...

5.5CVSS7.1AI score0.00345EPSS
Exploits1References2
OSV
OSV
added 2023/06/21 8:15 p.m.1 views

UBUNTU-CVE-2023-25435

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits at /libtiff/tools/tiffcrop.c:3753...

5.5CVSS7.1AI score0.00345EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.8 views

libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to a use-after-free problem in the extractContigSamplesShifted32bits function in tools/tiffcrop.c, resulting in a Denial of Service...

6.8CVSS7.3AI score0.00425EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.4 views

libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted16bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
Microsoft CVE
Microsoft CVE
added 2023/06/19 7:0 a.m.4 views

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215.

...

8.8CVSS7.1AI score0.00843EPSS
Exploits1
OSV
OSV
added 2023/06/14 8:15 p.m.1 views

DEBIAN-CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

8.8CVSS6.7AI score0.00843EPSS
Exploits1References1
OSV
OSV
added 2023/06/14 8:15 p.m.3 views

UBUNTU-CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

8.8CVSS6.8AI score0.00843EPSS
Exploits1References3
OSV
OSV
added 2023/05/19 3:15 p.m.3 views

UBUNTU-CVE-2023-30775

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c...

5.5CVSS7.3AI score0.00296EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 10:2 a.m.5 views

libtiff: Heap buffer overflow in extractContigSamples32bits, tiffcrop.c

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c...

5.5CVSS7.5AI score0.00296EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/04/18 1:45 a.m.2 views

SUSE CVE-2023-30775

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c...

5.5CVSS8.7AI score0.00296EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2022/08/20 7:0 a.m.3 views

libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw most likely by tricking a user into opening the crafted file with tiffcrop. Triggering this flaw could cause a crash or potentially further exploitation.

...

5.5CVSS7.1AI score0.003EPSS
Exploits0
OSV
OSV
added 2022/08/17 10:15 p.m.6 views

AZL-10593 CVE-2022-2869 affecting package libtiff for versions less than 4.5.0-1

libtiff's tiffcrop tool has a uint32t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file with tiffcrop. Triggering...

5.5CVSS6.9AI score0.003EPSS
Exploits0References1
Rows per page
Query Builder