Lucene search
K

7 matches found

OSV
OSV
added 2025/11/25 10:18 p.m.5 views

JLSEC-2025-260 Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_d...

Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, the fix is available with commit eecb0712...

5.5CVSS5.7AI score0.0125EPSS
Exploits1References16
SUSE CVE
SUSE CVE
added 2023/02/15 3:35 a.m.3 views

SUSE CVE-2022-0561

Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, the fix is available with commit eecb0712...

5.5CVSS6.9AI score0.0125EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2022/11/08 9:33 a.m.5 views

libtiff: Denial of Service via crafted TIFF file

A flaw was found in libtiff where a NULL source pointer passed as an argument to the memcpy function within the TIFFFetchStripThing in tifdirread.c. This flaw allows an attacker with a crafted TIFF file to exploit this flaw, causing a crash and leading to a denial of service...

5.5CVSS7.3AI score0.0125EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2022/08/15 12:0 a.m.7 views

The vulnerability of the TIFFFetchStripThing() function in the LibTIFF library on Amazon Linux systems allows a hacker to trigger a service failure.

The vulnerability of the TIFFFetchStripThing function in the LibTIFF library is related to the use of uninitialized resources during the processing of TIFF files. Exploiting this vulnerability could allow an attacker to cause service failures...

5.5CVSS6.8AI score0.00253EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2022/03/07 11:3 a.m.3 views

OESA-2022-1551 libtiff security update

TIFF Library and Utilities. Security Fixes: Null source pointer passed as an argument to memcpy function within TIFFReadDirectory in tifdirread.c in libtiff versions from 4.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, a fix is...

5.5CVSS6.8AI score0.0125EPSS
Exploits2References3
Microsoft CVE
Microsoft CVE
added 2022/02/18 8:0 a.m.3 views

Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_dirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources the fix is available with commit eecb0712.

...

5.5CVSS6.5AI score0.0125EPSS
Exploits1
OSV
OSV
added 2022/02/11 6:15 p.m.4 views

UBUNTU-CVE-2022-0561

Null source pointer passed as an argument to memcpy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, the fix is available with commit eecb0712...

5.5CVSS6.6AI score0.0125EPSS
Exploits1References4
Rows per page
Query Builder