EUVD-2023-58475

Malicious code in bioql PyPI...

MGASA-2024-0164 Updated libtiff packages fix security vulnerability

An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. CVE-2023-6228...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 23.10 : LibTIFF vulnerabilities (USN-6644-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6644-1 advisory. It was discovered that LibTIFF incorrectly handled certain files. If a user were tricked into opening a...

CVE-2023-6228

An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash...

Denial Of Service

libtiff.so is vulnerable to Denial Of Service attack. The vulnerability is due to a lack of codec validation in the tiffcp utility. A heap based buffer overflow is caused while processing a crafted TIFF file, leading to Denial of Service DoS...

OESA-2023-1857 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

SUSE CVE-2023-6228

An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash...

PT-2023-8624

Name of the Vulnerable Software and Affected Versions libtiff affected versions not specified Description The issue is related to a heap-based buffer overflow in the tiffcp utility distributed by the libtiff package. This occurs when a crafted TIFF file is processed, potentially leading to an...

DEBIAN-CVE-2023-2908

A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...

CVE-2023-2908 Libtiff: null pointer dereference in tif_dir.c

A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...

CVE-2023-2908 Libtiff: null pointer dereference in tif_dir.c

A null pointer dereference issue was found in Libtiff's tifdir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually leading to a denial o...

PT-2023-4908 · Libtiff +6 · Libtiff +6

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.4.0 Description: The issue is related to an out-of-bounds read in the tiffcp utility, located in tools/tiffcp.c:948, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. This can lead to ...

SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2017:0453-1)

This update for tiff fixes the following issues : - A crafted TIFF image could cause a crash and potential code execution when processed by the 'tiffcp' utility CVE-2017-5225, bsc1019611. Also a regression from the version update to 4.0.7 was fixed in handling TIFFTAGFAXRECVPARAMS. bsc1022103 Not...