7 matches found
CLSA-2026-1776349106 libtiff: Fix of 5 CVEs
CVE-2022-34526: fix stack buffer overflow in TIFFVGetField via invalid codec-specific tag - CVE-2023-2908: fix null pointer dereference in countInkNamesString in tifdir.c - CVE-2023-6277: prevent out-of-memory attacks by comparing allocation size with file size - CVE-2023-1916: fix out-of-bounds...
CVE-2025-8961
A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...
CVE-2025-8961 LibTIFF tiffcrop tiffcrop.c main memory corruption
A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...
CVE-2025-8961
LibTIFF 4.7.0 contains a local-only memory corruption vulnerability in tiffcrop.c (function main) that attackers can exploit via crafted TIFF files; a public exploit is available. Multiple advisories confirm patches in newer libtiff packages across distros (e.g., ALAS2-2025-3039, ALAS2025-1212, A...
SUSE CVE-2022-2520
A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted input...
OESA-2022-1935 libtiff security update
This libtiff provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libti...
LibTIFF 安全漏洞
LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for working with TIFF files.A denial of service vulnerability exists in LibTIFF version 4.4.0rc1, which stems from a failed sysmalloc assertion in rotateImage in...