Lucene search
K

24 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Tiff

The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...

6.5CVSS6.7AI score0.01206EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds read in tiffcrop at line 3400 of tools/tiffcrop.c, allowing attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile LibTIFF from source code, the fix is available in the commit afaabc3e...

6.8CVSS6.8AI score0.00421EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in TIF format

The tiffcrop utility in libtiff has a flaw in input validation that can lead to out-of-bounds reading, and ultimately cause a crash if an attacker is able to provide a malicious file to tiffcrop...

5.5CVSS6.8AI score0.003EPSS
Exploits0References2
OSV
OSV
added 2025/11/25 10:18 p.m.6 views

JLSEC-2025-273 Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via ...

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010...

6.5CVSS6.8AI score0.01206EPSS
Exploits1References16
OSV
OSV
added 2025/11/25 10:18 p.m.4 views

JLSEC-2025-301 A flaw was found in tiffcrop, a program distributed by the libtiff package

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff...

6.1CVSS6.1AI score0.00388EPSS
Exploits1References7
OSV
OSV
added 2025/08/14 1:15 p.m.5 views

UBUNTU-CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited...

4.8CVSS6.3AI score0.00186EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2024/08/07 11:17 a.m.5 views

libtiff: Buffer Overflow via /libtiff/tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to a heap-based buffer overflow in the processCropSelections function in tools/tiffcrop.c, resulting in a denial of service...

5.5CVSS7.5AI score0.00421EPSS
Exploits1References4
OSV
OSV
added 2024/05/24 11:8 a.m.3 views

OESA-2024-1663 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

6.1CVSS6.4AI score0.00388EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/09/26 9:25 a.m.14 views

libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the TIFFmemcpy function in libtiff/tifunix.c when called by functions in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.6 views

libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the TIFFmemcpy function in libtiff/tifunix.c when called by functions in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.8 views

libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the TIFFmemcpy function in libtiff/tifunix.c when called by functions in tools/tiffcrop.c, resulting in a Denial of Service and limited information...

6.8CVSS7.3AI score0.00421EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.7 views

libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted16bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.8 views

libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractContigSamplesShifted24bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited information disclosure...

6.8CVSS7.3AI score0.00421EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/21 2:50 p.m.6 views

libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds write in the extractContigSamplesShifted32bits function in tools/tiffcrop.c, resulting in a Denial of Service and limited data modification...

6.8CVSS7.3AI score0.00435EPSS
Exploits1References4
Microsoft CVE
Microsoft CVE
added 2023/04/17 7:0 a.m.5 views

A flaw was found in tiffcrop a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c resulting in a denial of service and limited information disclosure. This issue affects libtiff versions 4.x.

...

6.1CVSS6.4AI score0.00388EPSS
Exploits1
OSV
OSV
added 2023/04/10 10:15 p.m.10 views

AZL-26152 CVE-2023-1916 affecting package libtiff for versions less than 4.5.1-1

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff...

6.1CVSS6.6AI score0.00388EPSS
Exploits1References1
OSV
OSV
added 2023/04/10 10:15 p.m.1 views

DEBIAN-CVE-2023-1916

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff...

6.1CVSS6AI score0.00388EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/04/08 2:5 a.m.2 views

SUSE CVE-2023-1916

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff...

6.1CVSS6.2AI score0.00388EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.3 views

SUSE CVE-2022-2868

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop...

3.3CVSS6.9AI score0.003EPSS
Exploits0References6
OSV
OSV
added 2023/02/13 11:15 p.m.8 views

AZL-13394 CVE-2023-0799 affecting package libtiff for versions less than 4.4.0-8

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e...

5.5CVSS6.7AI score0.00425EPSS
Exploits1References1
Rows per page
Query Builder