10 matches found
K000157986: Multiple LibTIFF vulnerabilities
Security Advisory Description CVE-2016-9532 Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attackers to cause a denial of service out-of-bounds read via a crafted tif file. CVE-2016-5322 The setByteArray function in tifdir.c in...
OESA-2025-2052 libtiff security update
This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...
LibTIFF 代码问题漏洞
LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command line tools for working with TIFF files. LibTIFF suffers from a code issue vulnerability that stems from a null pointer dereference that allows an attacker to cause an...
SUSE CVE-2012-1173
Multiple integer overflows in tiffgetimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the 1 gtTileSeparate or 2 gtStripSeparate function, leading to a heap-based buffer overflow...
SUSE CVE-2018-5784
In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function of tifdir.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file. This occurs because the declared number of directory entries is not validated again...
[SECURITY] [DLA 911-1] tiff security update
Package : tiff Version : 4.0.2-6+deb7u12 CVE ID : CVE-2017-7592 CVE-2017-7593 CVE-2017-7594 CVE-2017-7595 CVE-2017-7596 CVE-2017-7597 CVE-2017-7598 CVE-2017-7599 CVE-2017-7600 CVE-2017-7601 CVE-2017-7602 Debian Bug : 859998 860000 860001 860003 Multiple security issues have been found in the tiff...
UBUNTU-CVE-2017-7597
tifdirread.c in LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted image...
LibTIFF stack buffer overflow vulnerability (CNVD-2017-00978)
LibTiff is an application library responsible for encoding/decoding the TIFF image format. LibTIFF suffers from a stack buffer overflow vulnerability that stems from a failure to perform sufficient bounds checking when copying user data into an undersized buffer. An attacker could exploit this...
DEBIAN-CVE-2016-5652
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...
DEBIAN-CVE-2016-3623
The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service divide-by-zero by setting the 1 v or 2 h parameter to 0...