117 matches found
Astra Linux – Vulnerability in TIF format
A buffer overflow in LibTiff v4.0.10 allows attackers to cause a denial of service through the “TIFFVGetField” function in the component ‘libtiff/tifdir.c’...
Astra Linux – Vulnerability in TIF format
Libtiff 4.5.0 is vulnerable to a Buffer Overflow issue through the extractContigSamplesBytes function at /libtiff/tools/tiffcrop.c:3215...
Astra Linux – Vulnerability in TIF format
LibTIFF 4.3.0 has a out-of-bounds read issue in TIFFmemcpy in tifunix.c, especially in situations where a custom tag is used, and 0x0200 is the second value in the DE field...
Linux Distros Unpatched Vulnerability : CVE-2026-36849
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - tiff - None Ubuntu Linux - Denial of Service via large SamplesPerPixel tag CVE-2026-36849 Note that Nessus relies on the presence of the package ...
Astra Linux - уязвимость в tiff
The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemcpy in libtiff/tifunix.c:346, when called from extractImageSection, located at tools/tiffcrop.c:6860. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...
Astra Linux - уязвимость в tiff
A null source pointer passed as an argument to the memcopy function within TIFFFetchStripThing in tifdirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to a Denial of Service attack through a crafted TIFF file. For users who compile libtiff from source code, this fix is available in the...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemset in libtiff/tifunix.c:340, when called from the process ProcessCropSelections, tools/tiffcrop.c:7619. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIFF file. For users who compile...
Astra Linux - уязвимость в tiff
A out-of-bounds read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service attack through a crafted tiff file. For users who compile libtiff from source code, the fix is available in the commit 408976c4...
Astra Linux - уязвимость в tiff
A null source pointer passed as an argument to the memcopy function within TIFFFetchNormalTag in tifdirread.c in libtiff versions up to 4.3.0 could lead to a Denial of Service attack through a crafted TIFF file...
Astra Linux - уязвимость в tiff
In libtiff version 4.3.0, the unchecked dereference of a return value can allow attackers to trigger a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, this issue has been fixed in the commit f2b656e2...
Astra Linux - уязвимость в tiff
LibTIFF 4.4.0 contains an out-of-bounds read in tiffcrop at line 3400 of tools/tiffcrop.c, allowing attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile LibTIFF from source code, the fix is available in the commit afaabc3e...
Astra Linux - уязвимость в tiff
A NULL pointer dereferencing in TIFFClose is caused by failing to open an output file a non-existent path or a path that requires permissions like /dev/null while specifying zones...
SUSE SLES12 Security Update : tiff (SUSE-SU-2026:1966-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1966-1 advisory. This update for tiff fixes the following issue - CVE-2026-4775: signed integer overflow in the putcontig8bitYCbCr44tile function bsc1260411. Tenable ha...
SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2026:1965-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1965-1 advisory. This update for tiff fixes the following issue - CVE-2026-4775: signed integer overflow in the putcontig8bitYCbCr44tile...
CVE-2026-4775 vulnerabilities
Vulnerabilities for packages: tiff...
Astra Linux – Vulnerability in TIF format
A vulnerability has been discovered in LibTIFF. It has been classified as critical. This vulnerability affects the TIFFReadRGBATileExt function in the file libtiff/tifgetimage.c. Manipulation of this function can lead to integer overflow. The attack can be initiated remotely. The exploit has been...
SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2026:1408-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1408-1 advisory. - CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. - CVE-2025-61144: Fixed stack overflow in...
EUVD-2026-15960
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error...
CVE-2026-33809
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error...