Ubuntu 14.04 LTS / 16.04 LTS : GDAL vulnerability (USN-8345-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8345-1 advisory. It was discovered that the vendored LibTIFF in GDAL incorrectly handled memory when parsing malformed TIFF image metadata. An attacker could possibly...

USN-8345-1: GDAL vulnerability

It was discovered that the vendored LibTIFF in GDAL incorrectly handled memory when parsing malformed TIFF image metadata. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information, or execute arbitrary code...

USN-8113-1 tiff vulnerabilities

It was discovered that LibTIFF did not properly handle memory when processing certain images. An attacker could possibly use this issue to cause LibTIFF to crash, resulting in a denial of service. CVE-2025-61143 It was discovered that LibTIFF did not properly handle memory when processing malform...

EUVD-2017-18730

Malware in sbrugna...

EUVD-2017-4468

Malware in sbrugna...

USN-7783-1: LibTIFF vulnerabilities

Xudong Cao and Yuqing Zhang discovered that LibTIFF incorrectly handled memory when parsing malformed TIFF images. An attacker could possibly use this issue to cause LibTIFF to crash, resulting in a denial of service. CVE-2025-8961 Xudong Cao and Yuqing Zhang discovered that LibTIFF incorrectly...

Memory Leakage

Libtiff.so is vulnerable to Memory Leak. The vulnerability is due to improper memory management due to flaws in the TIFFmallocExt, TIFFCheckRealloc, TIFFHashSetNew, and InitCCITTFax3 functions in tiffcmp.c, which allow local attackers to trigger memory leaks...

Ubuntu: Security Advisory (USN-7707-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-8961

LibTIFF 4.7.0 contains a local-only memory corruption vulnerability in tiffcrop.c (function main) that attackers can exploit via crafted TIFF files; a public exploit is available. Multiple advisories confirm patches in newer libtiff packages across distros (e.g., ALAS2-2025-3039, ALAS2025-1212, A...

Linux Distros Unpatched Vulnerability : CVE-2018-10801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TIFFClientOpen in tifunix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff. CVE-2018-10801 Note that Nessus relies on the presence of the packag...

Linux Distros Unpatched Vulnerability : CVE-2017-7594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OJPEGReadHeaderInfoSecTablesDcTable function in tifojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service memory leak via a crafted...

Linux Distros Unpatched Vulnerability : CVE-2017-9403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tifdirread.c, which allows attackers to cause a denial of...

Linux Distros Unpatched Vulnerability : CVE-2017-9936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.8, there is a memory leak in tifjbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack...

USN-6997-1 tiff vulnerability

It was discovered that LibTIFF incorrectly handled memory. An attacker could possibly use this issue to cause the application to crash, resulting in a denial of service...

Important: compat-libtiff3

Issue Overview: An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB. CVE-2023-6277 Affected Packages: compat-libtiff3 Note: This advisory is applicable to...

The vulnerability of the tiffcrop utility in the LibTIFF library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility in the LibTIFF library is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3701) in the libtiff library, which allows a hacker to cause a service failure

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3701 in the libtiff library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

USN-5714-1 tiff vulnerabilities

It was discovered that LibTIFF incorrectly handled certain memory operations when using tiffcrop. An attacker could trick a user into processing a specially crafted tiff image file and potentially use this issue to cause a denial of service. This issue only affected Ubuntu 22.10. CVE-2022-2519,...

CVE-2020-35521

A flaw was found in libtiff. Due to a memory allocation failure in tifread.c, a crafted TIFF file can lead to an abort, resulting in denial of service...

CVE-2017-16232

LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service memory consumption, as demonstrated by tifopen.c, tiflzw.c, and tifaux.c. NOTE: Third parties were unable to reproduce the issue...