14 matches found
KB5066874: Windows Server 2008 Security Update (October 2025)
The remote Windows host is missing security update 5066874. It is, therefore, affected by multiple vulnerabilities - tifpredict.h and tifpredict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual til...
EUVD-2017-16601
Malware in sbrugna...
EUVD-2023-34354
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-0801
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tifunix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to...
Linux Distros Unpatched Vulnerability : CVE-2015-8683
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The putcontig8bitCIELab function in tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via a packed TIFF...
Linux Distros Unpatched Vulnerability : CVE-2017-7597
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tifdirread.c in LibTIFF 4.0.7 has an outside the range of representable values of type float undefined behavior issue, which might allow remote attackers to cau...
Linux Distros Unpatched Vulnerability : CVE-2017-7600
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.0.7 has an outside the range of representable values of type unsigned char undefined behavior issue, which might allow remote attackers to cause a...
Linux Distros Unpatched Vulnerability : CVE-2016-10271
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service heap-based buffer over-read and buffer overflow or possibly have...
Linux Distros Unpatched Vulnerability : CVE-2017-7602
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified othe...
Linux Distros Unpatched Vulnerability : CVE-2018-18661
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function LZWDecode in the file tiflzw.c. CVE-2018-18661 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2012-1173
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in tiffgetimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is...
Linux Distros Unpatched Vulnerability : CVE-2016-10094
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one error in the t2preadwritepdfimagetile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted...
Linux Distros Unpatched Vulnerability : CVE-2010-2595
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote...
Design/Logic Flaw
An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiplyms in tools/ppm2tiff.c, which can cause a denial of service crash or possibly have unspecified other impact via a crafted image file...