22 matches found
EUVD-2017-12085
Malware in sbrugna...
EUVD-2017-12086
Malware in sbrugna...
libtiff 缓冲区错误漏洞
LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. LibTIFF suffers from an out-of-bounds read vulnerability that stems from a lack of proper validation of user-supplied data, where specially...
CVE-2022-41977
An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A specially-crafted TIFF file can lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-41977
CVE-2022-41977 affects OpenImageIO v2.3.19.0 with an out-of-bounds read when processing TIFF string fields, enabling information disclosure via a crafted file. Debian/Gentoo advisories recommend upgrading to fixed OpenImageIO releases (e.g., Debian 2.2.10.1+dfsg-1+deb11u1 or newer) to mitigate.
SUSE SLES11 Security Update : evince (SUSE-SU-2019:14141-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14141-1 advisory. - Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c...
Ubuntu 18.04 LTS / 20.04 LTS : OpenJDK vulnerabilities (USN-4433-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4433-1 advisory. Johannes Kuhn discovered that OpenJDK incorrectly handled access control contexts. An attacker could possibly use this issue to execute...
Fedora Update for libtiff FEDORA-2019-70d89f8806
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-11459
The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented, leading to uninitialized memory use when processing certain TIFF image files...
Heap overflow
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability when parsing TIFF image files. Successful exploitation could lead to arbitrary code execution...
CVE-2017-2944
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when parsing crafted TIFF image files. Successful exploitation could lead to arbitrary code execution...
CVE-2017-2944
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when parsing crafted TIFF image files. Successful exploitation could lead to arbitrary code execution...
Microsoft Graphics Filters TIFF Image Converter Buffer Overflow (MS10-105) - Ver2 (CVE-2010-3950)
Tagged Image File Format TIFF is a container format for storing images, including photographs and line art. A buffer overflow vulnerability has been discovered in the way that Microsoft Office parses specially crafted TIFF image files. The vulnerability is due to an error in Microsoft Office TIFF...
[SECURITY] Fedora 21 Update: mingw-libtiff-4.0.3-6.fc21
The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...
Debian Security Advisory DSA 2589-1 (tiff - buffer overflow)
The tiff library for handling TIFF image files contained a stack-based buffer overflow, potentially allowing attackers who can submit such files to a vulnerable system to execute arbitrary code. OpenVAS Vulnerability Test $Id: deb25891.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from...
Amazon Linux AMI : ImageMagick (ALAS-2012-76)
A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format Exif metadata. An attacker could create a specially crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code. CVE-2012-0247 A...
[SECURITY] Fedora 17 Update: libtiff-3.9.7-1.fc17
The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...
Adobe Photoshop < CS5 / CS5.1 Multiple Arbitrary Code Execution Vulnerabilities (APSB12-11)
The version of Adobe Photoshop installed on the remote Windows host is prior to CS5 12.0.5 or CS5.1 12.1.1. It is, therefore, multiple arbitrary code execution vulnerabilities : - Multiple heap-based buffer overflow conditions exist due to a failure to properly sanitize user-supplied input when...
Moderate: Red Hat Security Advisory: ImageMagick security update
Updated ImageMagick packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...
[SECURITY] Fedora 14 Update: libtiff-3.9.4-4.fc14
The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...