Linux Distros Unpatched Vulnerability : CVE-2022-0891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory...

PT-2023-9225 · Libtiff +6 · Libtiff +6

Name of the Vulnerable Software and Affected Versions: LibTIFF versions prior to the fixed version Description: A heap-buffer-overflow vulnerability was found in LibTIFF, specifically in the extractImageSection function at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attacker...

PT-2023-4906 · Libtiff +6 · Libtiff +6

Name of the Vulnerable Software and Affected Versions: libtiff versions 4.x Description: The issue is related to a flaw in the extractImageSection function of the libtiff library, which can cause an out-of-bounds read in memory. This can lead to a denial of service and limited information...

CVE-2023-1916

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service. The vulnerability is due to an out-of-bounds write using TIFFmemcpy in the extractImageSection function in tiffcrop.c which allows an attacker to cause an application crash via a crafted tiff file...