37 matches found
EUVD-2013-1950
Malware in sbrugna...
EUVD-2022-15927
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-3576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafte...
EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2023-2937)
According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...
Denial Of Service (DoS)
libtiff.so is vulnerable to Denial of Service DoS. The vulnerability is due to the OJPEGReadHeaderInfoSecTablesQTable function in tifojpeg.c, which allows an attacker to cause a denial of service DoS attack by tricking a victim into opening a specially crafted TIFF image file...
CVE-2023-3576
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denia...
CVE-2023-2908 Libtiff: null pointer dereference in tif_dir.c
A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...
SUSE CVE-2016-9532
Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attackers to cause a denial of service out-of-bounds read via a crafted tif file...
CVE-2022-3598
An out-of-bounds write flaw was found in the extractContigSamplesShifted24bits function in tools/tiffcrop.c in the libtiff package. By persuading a victim to open a specially-crafted TIFF image file, a remote attacker could cause a denial of service condition...
CVE-2022-3570
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact...
CVE-2022-3570
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact...
Heap overflow
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact...
The vulnerability of the printLong function in the tags_int.cpp component of the Exiv2 media metadata management library allows a attacker to cause a service failure.
The vulnerability of the printLong function in the tagsint.cpp component of the Exiv2 media metadata management library is related to the lack of checks for division by zero. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created tif file...
CVE-2022-0891
A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...
CVE-2022-0891
CVE-2022-0891 is a heap buffer overflow in ExtractImageSection (tiffcrop.c) of libtiff 4.3.0. A crafted TIFF image can trigger unsafe/out-of-bounds memory access, causing application crash and potential information disclosure. Connected advisories (Astra Linux, AlmaLinux, Arch Linux, Debian secur...
CVE-2022-0891
A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...
CVE-2022-0891
A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...
Huawei EulerOS: Security Advisory for netpbm (EulerOS-SA-2021-1500)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : netpbm (EulerOS-SA-2021-1217)
According to the versions of the netpbm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG file could cause the application to...
EulerOS 2.0 SP3 : netpbm (EulerOS-SA-2019-2635)
According to the versions of the netpbm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG file could cause the application to...