21 matches found
CVE-2022-27869
A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to execute arbitrary code...
EUVD-2019-14688
Malware in sbrugna...
EUVD-2019-3856
Malware in sbrugna...
EUVD-2021-26177
Malware in sbrugna...
EUVD-2021-29055
Malicious code in bioql PyPI...
EUVD-2021-27866
Malicious code in bioql PyPI...
EUVD-2022-34356
Malicious code in bioql PyPI...
EUVD-2022-15680
Malicious code in bioql PyPI...
CVE-2022-22537
When a user opens a manipulated Tagged Image File Format .tiff, 2d.x3d received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with the...
CVE-2022-27866
A maliciously crafted TIFF file when consumed through DesignReview.exe application can be forced to read beyond allocated boundaries when parsing the TIFF file. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2020-13811
An issue was discovered in Foxit Studio Photo before 3.6.6.922. It has an out-of-bounds write via a crafted TIFF file...
CVE-2020-6067
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll TIFF tifread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted TIFF file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the...
CVE-2020-6151
A memory corruption vulnerability exists in the TIFF handleCOMPRESSIONPACKBITS functionality of Accusoft ImageGear 19.7. A specially crafted malformed file can cause a memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
SUSE-SU-2023:2870-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2023-3195: Fixed stack overflow in coders/tiff.c while parsing malicious tiff file bsc1212235...
PT-2022-6889 · Libtiff +7 · Libtiff +7
Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.4.0 Description: The issue is related to an out-of-bounds read in the writeSingleSection function of the LibTIFF library, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file...
SUSE-SU-2022:3487-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2022-3213: Fixed heap buffer overflow when processing a malformed TIFF file bsc1203450...
Out-of-bounds
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tiflzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa...
MGASA-2020-0019 Updated freeimage packages fix security vulnerabilities
The updated packages fix security vulnerabilities: When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow...
MGASA-2019-0101 Updated libtiff packages fix security vulnerability
An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tifdirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted tiff file...
CVE-2016-10095
Stack-based buffer overflow in the TIFFVGetField function in tifdir.c in LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7 and 4.0.8 allows remote attackers to cause a denial of service crash via a crafted TIFF file...