DNGBehaviorAnalyzer Telemetry-Based DNG/TIFF Metadata Parser and Anomaly Detection

This Python script provides a telemetry-driven analysis framework for inspecting Digital Negative DNG files through low-level TIFF metadata parsing and runtime event logging. The tool reads and validates TIFF headers, traverses Image File Directory IFD entries, and records parser activity using...

📄 Samsung QuramDng Out-Of-Bounds Write

Samsung QuramDng has an invalid LossyJpeg component assumption that leads to an out-of-bounds write. BACKGROUND Samsung Android uses an internal DNG decoding library, QuramDng in libimagecodec.quram.so, to decode images in com.samsung.ipservice and com.samsung.gallery3d. Samsung Gallery will deco...

CVE-2025-59801

In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xpsunpredicttiff in xpstiff.c because the samplesperpixel value is not checked...

The vulnerability of the Pillow image processing library, related to uncontrolled resource consumption, allows a hacker to perform a type of “denial-of-service” attack.

The vulnerability of the Pillow image-processing library lies in the fact that the application does not properly control the consumption of internal resources in TiffImagePlugin.py during the context setting for image decoding. Exploiting this vulnerability allows a remote attacker to trigger...

SUSE CVE-2015-8781

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

PT-2022-6570 · Pypi +2 · Pillow +2

Name of the Vulnerable Software and Affected Versions: Pillow versions 9.2.0 through 9.2.x and prior to 9.3.0 can be simplified to: Pillow versions 9.2.0 through 9.3.0, but since 9.3.0 is the fixed version, the correct representation is: Pillow versions prior to 9.3.0 Description: The issue is...

CVE-2017-6335

The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file...

libtiff: invalid assertion

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

libtiff: Out-of-bounds read in tif_getimage.c

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

libtiff: Out-of-bounds read in tif_getimage.c

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

libtiff: invalid assertion

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

DEBIAN-CVE-2015-8781

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

UBUNTU-CVE-2015-8781

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

UBUNTU-CVE-2015-8665

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

CVE-2011-3194

Buffer overflow in the TIFF reader in gui/image/qtiffhandler.cpp in Qt 4.7.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the TIFFTAGSAMPLESPERPIXEL tag in a greyscale TIFF image with multiple samples per pixel...

CVE-2011-3194

Buffer overflow in the TIFF reader in gui/image/qtiffhandler.cpp in Qt 4.7.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the TIFFTAGSAMPLESPERPIXEL tag in a greyscale TIFF image with multiple samples per pixel...

IrfanView - '.tiff' Image Processing Buffer Overflow

Application: IrfanView TIFF Image Processing Buffer Overflow Vulnerability Platforms: Windows Exploitation: Remote code execution Secunia Number: SA47065 PRL: 2011-10 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introductio...

libtiff: out-of-bounds read crash on images with invalid SamplesPerPixel values

The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a TIFF file with an invalid combination of SamplesPerPixel and Photometric values...