Lucene search
K

7 matches found

OSV
OSV
added 2026/04/16 2:18 p.m.9 views

CLSA-2026-1776349106 libtiff: Fix of 5 CVEs

CVE-2022-34526: fix stack buffer overflow in TIFFVGetField via invalid codec-specific tag - CVE-2023-2908: fix null pointer dereference in countInkNamesString in tifdir.c - CVE-2023-6277: prevent out-of-memory attacks by comparing allocation size with file size - CVE-2023-1916: fix out-of-bounds...

6.5CVSS6.8AI score0.01825EPSS
Exploits4References1
OSV
OSV
added 2025/08/14 1:15 p.m.5 views

CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

4.8CVSS3.6AI score
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/08/14 12:2 p.m.3 views

CVE-2025-8961 LibTIFF tiffcrop tiffcrop.c main memory corruption

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

4.8CVSS3.6AI score0.00186EPSS
Exploits1References7
CVE
CVE
added 2025/08/14 12:2 p.m.86 views

CVE-2025-8961

LibTIFF 4.7.0 contains a local-only memory corruption vulnerability in tiffcrop.c (function main) that attackers can exploit via crafted TIFF files; a public exploit is available. Multiple advisories confirm patches in newer libtiff packages across distros (e.g., ALAS2-2025-3039, ALAS2025-1212, A...

4.8CVSS3.6AI score0.00186EPSS
Exploits1References7Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.3 views

SUSE CVE-2022-2520

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted input...

6.5CVSS6.7AI score0.00939EPSS
Exploits1References6
OSV
OSV
added 2022/09/23 11:4 a.m.3 views

OESA-2022-1935 libtiff security update

This libtiff provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libti...

6.5CVSS6.7AI score0.00939EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/31 12:0 a.m.3 views

LibTIFF 安全漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for working with TIFF files.A denial of service vulnerability exists in LibTIFF version 4.4.0rc1, which stems from a failed sysmalloc assertion in rotateImage in...

6.5CVSS6.5AI score0.00939EPSS
Exploits1References15
Rows per page
Query Builder