13 matches found
Debian DLA-2932-1 : tiff - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2932 advisory. Several issues have been found in tiff, a library and tools to manipulate and convert files in the Tag Image File Format TIFF. CVE-2022-22844 out-of-bounds read in...
CVE-2010-2631
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than CVE-2010-2481...
CVE-2010-2631
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than CVE-2010-2481...
Code injection
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than CVE-2010-2481...
CVE-2010-2631
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than CVE-2010-2481...
CVE-2010-2631
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than CVE-2010-2481...
CVE-2010-2630
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than...
CVE-2010-2483
The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a TIFF file with an invalid combination of SamplesPerPixel and Photometric values...
CVE-2010-2630
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than...
PT-2010-1129 · Libtiff +2 · Libtiff +2
Name of the Vulnerable Software and Affected Versions: LibTIFF version 3.9.0 tiff versions prior to 4.0.2-r1 Description: The issue allows remote attackers to cause a denial of service, potentially leading to an out-of-bounds read and application crash, via a TIFF file with an invalid combination...
CVE-2010-2233
tifgetimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG...
Input validation
The OJPEGPostDecode function in tifojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted TIFF image, related to "downsampled OJPEG input."...
Input validation
The TIFFVStripSize function in tifstrip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service application crash via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler...