Lucene search
+L

44 matches found

nvd
nvd
added 2026/06/29 5:16 p.m.9 views

CVE-2026-12912

A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT8BITABGR output format and a specific stride value, leading to a heap-base...

7.3CVSS0.00231EPSS
Exploits0References6
debiancve
debiancve
added 2026/06/29 4:31 p.m.7 views

CVE-2026-12912

A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT8BITABGR output format and a specific stride value, leading to a heap-base...

7.3CVSS6.7AI score0.00231EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/06/29 12:0 a.m.14 views

PT-2026-53316

Name of the Vulnerable Software and Affected Versions libtiff affected versions not specified Description A heap-based buffer overflow exists in the PixarLog decoder. A remote attacker can trigger this issue by providing a specially crafted PixarLog-compressed TIFF image. The flaw occurs during t...

7.3CVSS6.6AI score0.00231EPSS
Exploits0References15
astralinux
astralinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in Tiff

A flaw was discovered in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations...

7.8CVSS7.2AI score0.00553EPSS
Exploits0References2
nessus
nessus
added 2026/06/09 12:0 a.m.10 views

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2026-2253)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...

7.8CVSS5.8AI score0.00553EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Tiff

A segmentation fault flaw was discovered in libtiff, which can be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt API. This flaw allows a remote attacker to cause a heap-buffer overflow, resulting in a denial of service...

7.5CVSS6.8AI score0.02187EPSS
Exploits0References2
nessus
nessus
added 2026/05/02 12:0 a.m.4 views

AlmaLinux 9 : libtiff (ALSA-2026:12271)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:12271 advisory. libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 Tenable has extracted the...

7.8CVSS6.3AI score0.00553EPSS
Exploits0References3
astralinux
astralinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Tiff

A memory-related flaw was discovered in libtiff. Passing a specially crafted TIFF file to the TIFFOpen API may allow a remote attacker to cause a denial of service by using a crafted input with a size smaller than 379 KB...

6.5CVSS6.9AI score0.01825EPSS
Exploits1References3
openvas
openvas
added 2026/01/14 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2026-1032)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.4AI score0.00739EPSS
Exploits0References2
nessus
nessus
added 2025/11/19 12:0 a.m.6 views

AlmaLinux 9 : libtiff (ALSA-2025:20956)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:20956 advisory. libtiff: LibTIFF Use-After-Free Vulnerability CVE-2025-8176 libtiff: Libtiff Write-What-Where CVE-2025-9900 Tenable has extracted the preceding descripti...

8.8CVSS6.4AI score0.00739EPSS
Exploits1References4
suse
suse
added 2025/11/06 9:19 a.m.3 views

Security update for tiff

This update for tiff fixes the following issues: CVE-2025-9900: Fixed Write-What-Where in libtiff via TIFFReadRGBAImageOriented bsc1250413. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

8.5CVSS7AI score0.00739EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23188

Malware in sbrugna...

5.5CVSS6.9AI score0.01226EPSS
Exploits0References10
nessus
nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libtiff (UTSA-2025-680599)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680599 advisory. LibTIFF 4.4.0 has an out-of-bounds write in TIFFmemset in libtiff/tifunix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to...

6.5CVSS6.8AI score0.00938EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30917

Malicious code in bioql PyPI...

8.8CVSS4.3AI score0.00739EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-57012

Malicious code in bioql PyPI...

7.5CVSS8.1AI score0.02187EPSS
Exploits0References6
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-34777

Malicious code in bioql PyPI...

6.5CVSS7.5AI score0.00939EPSS
Exploits1References8
openvas
openvas
added 2025/09/30 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7783-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00739EPSS
Exploits2References2
osv
osv
added 2025/09/23 5:15 p.m.7 views

AZL-67739 CVE-2025-9900 affecting package openjpeg2 2.3.1-12

A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controll...

8.8CVSS7AI score0.00739EPSS
Exploits0References1
nessus
nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-8851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the...

5.3CVSS6.3AI score0.00176EPSS
Exploits0References4
osv
osv
added 2025/08/14 1:15 p.m.2 views

DEBIAN-CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

4.8CVSS5AI score0.00202EPSS
Exploits1References1
Rows per page
Query Builder