7 matches found
Scientific Linux Security Update : libtiff on SL7.x x86_64 (20201001)
Security Fixes : - libtiff: integer overflow in TIFFCheckMalloc and TIFFCheckRealloc in tifaux.c CVE-2019-14973 - libtiff: integer overflow leading to heap-based buffer overflow in tifgetimage.c CVE-2019-17546 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...
libtiff: integer overflow in _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c
TIFFCheckMalloc and TIFFCheckRealloc in tifaux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash...
Integer overflow
TIFFCheckMalloc and TIFFCheckRealloc in tifaux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash...
CVE-2019-14973
CVE-2019-14973 affects LibTIFF: the functions _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c through 4.0.10 mishandle integer overflow checks due to reliance on undefined C behavior, which can lead to an application crash. Connected advisories (DEBIAN, ALAS, CentOS/CESA, Cloud Foundry) corro...
CVE-2019-14973
TIFFCheckMalloc and TIFFCheckRealloc in tifaux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash...
CVE-2017-16232
LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service memory consumption, as demonstrated by tifopen.c, tiflzw.c, and tifaux.c. NOTE: Third parties were unable to reproduce the issue...
openSUSE: Security Advisory for tiff (openSUSE-SU-2016:3035-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...