Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the putcontig8bitYCbCr44tile, putcontig8bitYCbCr12tile, putcontig8bitYCbCr22tile and putcontig8bitYCbCr42tile functions. An attacker can cause an out-of-bounds heap write, potentially leading to...

EUVD-2022-37227

Malicious code in bioql PyPI...

EUVD-2021-32766

Malicious code in bioql PyPI...

EUVD-2023-43873

Malicious code in bioql PyPI...

CVE-2021-40700

Adobe Premiere Elements version 2021.2235820 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this...

Medium: ImageMagick

Issue Overview: stack overflow when parsing malicious tiff image CVE-2023-3195 Affected Packages: ImageMagick Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial Of Service DoS. The vulnerability exists because of an out-of-bounds write in tiffcrop.c, allowing an attacker to cause an application crash through a maliciously crafted tiff file...

CVE-2020-36521

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iCloud for Windows 11.4, iOS 14.0 and iPadOS 14.0, watchOS 7.0, tvOS 14.0, iCloud for Windows 7.21, iTunes for Windows 12.10.9. Processing a maliciously crafted tiff file may lead to a denial-of-service or...

Code injection

A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code...

CVE-2021-39820

Adobe InDesign versions 16.3 and earlier, and 16.3.1 and earlier is affected by an Out-of-bounds Write vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit thi...

CVE-2022-27530

A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability may be exploited to execute arbitrary code...

CVE-2021-46064

IrfanView 4.59 is vulnerable to buffer overflow via the function at address 0x413c70 in 32bit version of the binary. The vulnerability triggers when the user opens malicious .tiff image...

CVE-2021-40700

Adobe Premiere Elements version 2021.2235820 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this...

CVE-2021-39818

Adobe InCopy version 11.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...

Denial Of Service (DoS)

exiv2 is vulnerable to denial of service. The vulnerability exists due to a flaw in TiffImageEntry::doWriteImage of pValue which allows an attacker to crash the application by tricking a user into opening a malicious tiff file...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service DoS or remote code execution. It can happen because the attacker can perform Illegal writes by sending a malicious TIFF file to the TIFFVGetField function in tifdirinfo.c. It can also cause a remote code execution if an attacker writes malicious code...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service DoS attacks. A malicious user can pass a malicious tiff file that has the BitsPerSample tag set to zero to cause a divide by zero error that can crash the application...

Silicon Graphics LibTIFF Denial of Service Vulnerability (CNVD-2017-04618)

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in LibTIFF that could be exploited by remote attackers to submit a special fi...

Denial Of Service (DoS) Through Memory Consumption

ImageMagick is vulnerable to denial of service DoS attacks. A malicious user can pass a malicious tiff image to the system that can consume all available memory during image identification which can lead to the system crashing...

Silicon Graphics LibTIFF Remote Code Execution Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF files. A security vulnerability in Silicon Graphics LibTIFF can be exploited by remote attackers to construct malicious TIFF files that can be parsed by the user, which can crash an application or execute arbitrary code...