Lucene search
K

6 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Tiff

LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemset in libtiff/tifunix.c:340, when called from the process ProcessCropSelections, tools/tiffcrop.c:7619. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIFF file. For users who compile...

6.5CVSS6.8AI score0.00938EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Tiff

The processCropSelections function in the tools/tiffcrop.c file of LibTIFF, as of version 4.5.0, has a heap-based buffer overflow vulnerability. This vulnerability occurs due to a crafted TIFF image being written with a size of 307203 bytes...

5.5CVSS6.9AI score0.00461EPSS
Exploits1References2
OSV
OSV
added 2025/11/25 10:18 p.m.3 views

JLSEC-2025-289 processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow ...

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow e.g., "WRITE of size 307203" via a crafted TIFF image...

5.5CVSS7.2AI score0.00461EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2024/08/07 11:17 a.m.5 views

libtiff: Buffer Overflow via /libtiff/tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to a heap-based buffer overflow in the processCropSelections function in tools/tiffcrop.c, resulting in a denial of service...

5.5CVSS7.5AI score0.00421EPSS
Exploits1References4
Microsoft CVE
Microsoft CVE
added 2023/01/31 8:0 a.m.1 views

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g. "WRITE of size 307203") via a crafted TIFF image.

...

5.5CVSS6.5AI score0.00461EPSS
Exploits1
OSV
OSV
added 2022/10/21 4:15 p.m.0 views

ALPINE-CVE-2022-3626

LibTIFF 4.4.0 has an out-of-bounds write in TIFFmemset in libtiff/tifunix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit...

6.5CVSS6.9AI score0.00938EPSS
Exploits1References1
Rows per page
Query Builder