MiracleLinux 8 : libtiff-4.0.9-32.el8_10 (AXSA:2024-8648:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8648:03 advisory. libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tifdirread.c CVE-2018-15209 libtiff: Buffer Overflow via...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2026-1032)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libtiff (UTSA-2025-680601)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680601 advisory. LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted...

SUSE SLES12 Security Update : tiff (SUSE-SU-2025:03346-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03346-1 advisory. - CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. - CVE-2025-8534: null pointer dereference in function...

SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2025:03345-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03345-1 advisory. - CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. - CVE-2025-8534: null pointe...

SUSE-SU-2025:03345-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. - CVE-2025-8534: null pointer dereference in function PSLvl2page bsc1247582. - CVE-2025-8961: segmentation fault via main function of tiffcrop utility bsc1248117...

OESA-2023-1402 libtiff security update

This libtiff provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libti...

SUSE CVE-2023-0795

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e...

LibTIFF 缓冲区错误漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for processing TIFF files. libTIFF suffers from an out-of-bounds write vulnerability that stems from a boundary error in tiffcrop at libtiff/tifunix.c:368 when...

CVE-2016-9538

tools/tiffcrop.c in libtiff 4.0.6 reads an undefined buffer in readContigStripsIntoBuffer because of a uint16 integer overflow. Reported as MSVR 35100...