Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680617)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680617 advisory. A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggerin...

libtiff: integer overflow in tiffcp.c

LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service application crash or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow...

AZL-44253 CVE-2023-30086 affecting package openjpeg2 2.3.1-12

Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c...

Denial Of Service (DoS)

libtiff.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to an out-of-bounds read causes by tiffcp in tiffcp.c which allows an attacker to cause an application crash via a crafted tiff file...

CVE-2022-4645

LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125...

K45593826: LibTIFF vulnerabilities CVE-2015-8870, CVE-2016-5652, CVE-2016-9536, CVE-2016-9537, and CVE-2016-9540

Security Advisory Description CVE-2015-8870 Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service heap-based buffer over-read, or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or...

LibTIFF Buffer Overflow Vulnerability (CNVD-2022-72097)

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for handling TIFF files. libTIFF suffers from a security vulnerability that stems from a stack buffer overflow flaw found in the main function of tiffcp.c. An...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

CVE-2022-1355

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service...

Out-of-Bounds Read

libtiff.so is vulnerable to out-of-bounds read. The vulnerability exists in DECLAREwriteFunc function in tiffcp.c due to influence memory values which allows an attacker to send crated tiff file causing an application crash...

Denial Of Service (DoS)

libtiff.so is susceptible to denial of service DoS attack. The attack is possible when an attacker send a malicious TIFF file to the cpSeparateBufToContigBuf function in tiffcp.c to cause a heap-based buffer overflow...

Denial Of Service (DoS) Through Heap Buffer Overflow

libtiff.so is vulnerable to denial of service DoS through heap-based buffer overflow attacks. The vulnerability exists in tools/tiffcp.c where it is possible for a heap-based buffer overflow to occur in cpContig2SeparateByRow and cpSeparate2ContigByRow if BitsPerSample != 8, causing a denial of...

CVE-2016-10268

tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service integer underflow and heap-based buffer under-read or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 78490" and libtiff/tifunix.c:115:23...

CVE-2016-10093

Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5 and 4.0.6 allows remote attackers to have unspecified impact via a crafted image, which triggers a...

CVE-2023-38288

Removed by vendor...