Astra Linux - уязвимость в tiff

A NULL pointer dereferencing in TIFFClose is caused by failing to open an output file a non-existent path or a path that requires permissions like /dev/null while specifying zones...

MiracleLinux 9 : libtiff-4.4.0-5.el9 (AXSA:2023-4864:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4864:02 advisory. LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at...

JLSEC-2025-305 A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existen...

A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones...

EUVD-2022-34778

Malicious code in bioql PyPI...

EUVD-2023-43984

Malicious code in bioql PyPI...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2023-2813)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 - A null pointer...

EulerOS Virtualization 3.0.6.0 : libtiff (EulerOS-SA-2023-3435)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 ...

EulerOS 2.0 SP8 : libtiff (EulerOS-SA-2023-3135)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 - A null pointe...

EulerOS 2.0 SP9 : libtiff (EulerOS-SA-2023-2900)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the...

EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-2918)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2023-2789)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 - A null pointer...

EulerOS Virtualization 3.0.6.6 : libtiff (EulerOS-SA-2023-3401)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF...

EulerOS Virtualization 2.9.0 : libtiff (EulerOS-SA-2023-3101)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF...

libtiff: tiffcrop: null pointer dereference in TIFFClose()

A flaw was found in LibTiff. A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones...

Amazon Linux AMI : libtiff (ALAS-2023-1846)

The version of libtiff installed on the remote host is prior to 4.0.3-35.46. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1846 advisory. A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires...

Medium: libtiff

Issue Overview: A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones. CVE-2023-3316 Affected Packages: libtiff Issue Correction: Run yum update libtiff or yum update...

Medium: libtiff

Issue Overview: A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones. CVE-2023-3316 Affected Packages: libtiff Issue Correction: Run dnf update libtiff --releasever...

Amazon Linux 2 : compat-libtiff3 (ALAS-2023-2125)

The version of compat-libtiff3 installed on the remote host is prior to 3.9.4-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2125 advisory. A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that...

Medium: libtiff

Issue Overview: A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones. CVE-2023-3316 Affected Packages: libtiff Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

Medium: compat-libtiff3

Issue Overview: A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones. CVE-2023-3316 Affected Packages: compat-libtiff3 Note: This advisory is applicable to Amazon Linux 2 A...