Astra Linux - уязвимость в tiff

A buffer overflow vulnerability has been discovered in Libtiff V.4.0.7. This vulnerability allows a local attacker to cause a denial of service through the tiffcp function in tiffcp.c...

Astra Linux - уязвимость в tiff

A stack buffer overflow vulnerability was discovered in the tiffcp.c file of Libtiffs, within the main function. This vulnerability allows an attacker to submit a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue. This may result in memory corruption and cause a syste...

Astra Linux - уязвимость в tiff

LibTIFF 4.4.0 contains an out-of-bounds read in tiffcp, located at line 948 of tools/tiffcp.c. This vulnerability allows attackers to cause a denial-of-service attack through a specially crafted TIFF file. For users who compile LibTIFF from source code, the fix is available in the commit with the...

Astra Linux - уязвимость в tiff

A out-of-bounds read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service attack through a crafted tiff file. For users who compile libtiff from source code, the fix is available in the commit 408976c4...

Astra Linux - уязвимость в tiff

In the libtiff 4.3.0 version of tiffcp, an accessible assertion allows attackers to cause a denial-of-service attack through a crafted tiff file. For users who compile libtiff from source code, this fix is available in the commit 5e180045...

Astra Linux - уязвимость в tiff

A null pointer dereference issue was discovered in the tifdir.c file of Libtiff. This issue may allow an attacker to submit a crafted TIFF image file to the tiffcp utility, triggering a runtime error that leads to undefined behavior. This will result in the application crashing, potentially leadi...

MiracleLinux 8 : libtiff-4.0.9-32.el8_10 (AXSA:2024-8648:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8648:03 advisory. libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tifdirread.c CVE-2018-15209 libtiff: Buffer Overflow via...

MiracleLinux 8 : libtiff-4.0.9-31.el8 (AXSA:2024-8169:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8169:02 advisory. libtiff: out-of-bounds read in tiffcp in tools/tiffcp.c CVE-2022-4645 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : libtiff-4.0.3-35.0.5.el7.AXS7 (AXSA:2025-10952:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10952:04 advisory. CVE-2017-5225: fix heap buffer overflow in tools/tiffcp by restricting BitsPerSample values CVEs: CVE-2017-5225 LibTIFF version 4.0.7 is vulnerable to a hea...

JLSEC-2025-307 A null pointer dereference issue was found in Libtiff's tif_dir.c file

A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...

JLSEC-2025-300 LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause...

LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125...

JLSEC-2025-267 Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service vi...

Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4...

JLSEC-2025-281 A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

TencentOS Server 3: libtiff (TSSA-2024:0194)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0194 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CLSA-2025-1760022663 libtiff: Fix of CVE-2017-5225

CVE-2017-5225: fix heap buffer overflow in tools/tiffcp by restricting BitsPerSample values...

EUVD-2018-8784

Malware in sbrugna...

EUVD-2017-14330

Malware in sbrugna...

Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680632)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680632 advisory. Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from source...

Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680634)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680634 advisory. Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, th...

EUVD-2022-15950

Malicious code in bioql PyPI...