27 matches found
JLSEC-2025-310 A memory leak flaw was found in Libtiff's tiffcrop utility
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denia...
EUVD-2022-35101
Malicious code in bioql PyPI...
EUVD-2023-44226
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-3576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafte...
Linux Distros Unpatched Vulnerability : CVE-2022-2868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to suppl...
EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-2918)
According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...
The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3724) in the libtiff library, which allows a hacker to cause a service failure.
The vulnerability of the tiffcrop utility tools/tiffcrop.c:3724 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the tiffcrop utility (libtiff/tif_unix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778) in the libtiff library, which allows a hacker to cause a service failure.
The vulnerability of the tiffcrop utility libtiff/tifunix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
PT-2023-5345
Name of the Vulnerable Software and Affected Versions Libtiff affected versions not specified Description A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop...
EulerOS 2.0 SP5 : compat-libtiff3 (EulerOS-SA-2023-1494)
According to the versions of the compat-libtiff3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libtiff's tiffcrop utility has a uint32t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted fil...
PT-2023-5349 · Libtiff +8 · Libtiff +8
Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.4.0 Description: The issue is related to an out-of-bounds read in the tiffcrop utility of the LibTIFF library, specifically in the tools/tiffcrop.c file at line 3592. This can lead to a denial-of-service when a crafted tiff...
PT-2023-4907 · Libtiff +8 · Libtiff +8
Name of the Vulnerable Software and Affected Versions: libtiff version 4.4.0 Description: The issue is related to an out-of-bounds read in the tiffcrop utility of the libtiff library, which can be exploited to cause a denial-of-service via a crafted tiff file. Recommendations: For version 4.4.0,...
PT-2023-4910
Name of the Vulnerable Software and Affected Versions libtiff version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility of the libtiff library, specifically in tools/tiffcrop.c:3502. This can be exploited to cause a denial-of-service via a crafted tiff file...
PT-2023-4914
Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3609, which can be exploited to cause a denial-of-service via a crafted tiff file. This can allow attackers t...
PT-2023-4912
Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3724, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. Recommendatio...
PT-2023-4913
Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3516, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. Recommendatio...
PT-2023-4911
Name of the Vulnerable Software and Affected Versions libtiff version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility of the libtiff library, specifically in the files libtiff/tif unix.c:368, tools/tiffcrop.c:2903, and tools/tiffcrop.c:6778. This can be...
RHEL 8 : libtiff (RHSA-2023:0095)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0095 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from...
SUSE-SU-2023:0060-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2022-3570: Fixed a potential crash in the tiffcrop utility bsc1205422. - CVE-2022-3598: Fixed a potential crash in the tiffcrop utility bsc1204642...
EulerOS Virtualization 2.9.0 : libtiff (EulerOS-SA-2023-1226)
According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libtiff's tiffcrop utility has a uint32t underflow that can lead to out of bounds read and write. An attacker who supplies a...