RHEL 7 : compat-libtiff3 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libtiff: PixarLogDecode Heap Buffer Overflow CVE-2016-5875 Note that Nessus has not tested for this issue but has...

SUSE CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

SUSE CVE-2016-5317

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service DoS attacks. The vulnerability exists due to a buffer overflow issue that can be triggered in the PixarLogDecode function of tifpixarlog.c where an invalid TIFF file can cause the DoS attack...

Denial Of Service (DoS)

libtiff.so is vulnerable to denial of service DoS attacks. A malicious user can pass a tiff file to the PixarLogDecode function in tifpixarlog.c to cause a buffer overflow that can crash the application...

libtiff/tiff_read_rgba_fuzzer: Use-of-uninitialized-value in inflate

Project: https://gitlab.com/libtiff/libtiff.git Detailed report: https://oss-fuzz.com/testcase?key=5161833930424320 Project: libtiff Fuzzer: libFuzzerlibtifftiffreadrgbafuzzer Fuzz target binary: tiffreadrgbafuzzer Job Type: libfuzzermsanlibtiff Platform Id: linux Crash Type:...

libtiff/tiff_read_rgba_fuzzer: Use-of-uninitialized-value in inflate

Project: https://gitlab.com/libtiff/libtiff.git Detailed report: https://oss-fuzz.com/testcase?key=5273368258412544 Project: libtiff Fuzzer: libFuzzerlibtifftiffreadrgbafuzzer Fuzz target binary: tiffreadrgbafuzzer Job Type: libfuzzermsanlibtiff Platform Id: linux Crash Type:...

ALPINE-CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

DEBIAN-CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

Buffer overflow

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

CVE-2016-5314

Buffer overflow in the PixarLogDecode function in tifpixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by overwriting the vgetparent function pointer wi...

CVE-2016-5314

CVE-2016-5314 is the LibTIFF vulnerability describing a buffer overflow in PixarLogDecode (tif_pixarlog.c) for LibTIFF 4.0.6 and earlier. The issue allows remote attackers to crash the application or cause possible other impact via a crafted TIFF image, demonstrated by overwriting the vgetparent ...

LibTIFF PixarLogDecode Remote Code Execution Vulnerability(CVE-2016-5875)

Summary An exploitable heap based buffer overflow exists in the handling of compressed TIFF images in LibTIFF's PixarLogDecode api. A crafted TIFF document can lead to a heap based buffer overflow resulting in remote code execution. The vulnerability can be triggered through any user controlled...

CVE-2016-5317

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...

CVE-2016-5317

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...

Buffer overflow

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...

ALPINE-CVE-2016-5317

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack crash via a crafted TIFF file...