Lucene search
K

27 matches found

OSV
OSV
added 2025/11/25 10:18 p.m.3 views

JLSEC-2025-310 A memory leak flaw was found in Libtiff's tiffcrop utility

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denia...

5.5CVSS6.4AI score0.00341EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-35101

Malicious code in bioql PyPI...

5.5CVSS7.1AI score0.003EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-44226

Malicious code in bioql PyPI...

5.5CVSS7.1AI score0.00341EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2023-3576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafte...

5.5CVSS6.5AI score0.00341EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-2868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to suppl...

5.5CVSS6.7AI score0.003EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.32 views

EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-2918)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. CVE-2023-26965 -...

6.5CVSS6.3AI score0.01124EPSS
Exploits3References5
BDU FSTEC
BDU FSTEC
added 2023/09/11 12:0 a.m.6 views

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3724) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3724 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00435EPSS
Exploits1References17Affected Software7
BDU FSTEC
BDU FSTEC
added 2023/09/11 12:0 a.m.5 views

The vulnerability of the tiffcrop utility (libtiff/tif_unix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility libtiff/tifunix.c:368, tools/tiffcrop.c:2903, tools/tiffcrop.c:6778 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00435EPSS
Exploits1References17Affected Software7
Positive Technologies
Positive Technologies
added 2023/04/07 12:0 a.m.2 views

PT-2023-5345

Name of the Vulnerable Software and Affected Versions Libtiff affected versions not specified Description A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop...

5.5CVSS6.6AI score0.00422EPSS
Exploits1References68
Tenable Nessus
Tenable Nessus
added 2023/03/08 12:0 a.m.51 views

EulerOS 2.0 SP5 : compat-libtiff3 (EulerOS-SA-2023-1494)

According to the versions of the compat-libtiff3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libtiff's tiffcrop utility has a uint32t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted fil...

5.5CVSS6.5AI score0.00537EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.2 views

PT-2023-5349 · Libtiff +8 · Libtiff +8

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.4.0 Description: The issue is related to an out-of-bounds read in the tiffcrop utility of the LibTIFF library, specifically in the tools/tiffcrop.c file at line 3592. This can lead to a denial-of-service when a crafted tiff...

8.8CVSS6.8AI score0.02187EPSS
Exploits55References330
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.2 views

PT-2023-4907 · Libtiff +8 · Libtiff +8

Name of the Vulnerable Software and Affected Versions: libtiff version 4.4.0 Description: The issue is related to an out-of-bounds read in the tiffcrop utility of the libtiff library, which can be exploited to cause a denial-of-service via a crafted tiff file. Recommendations: For version 4.4.0,...

8.8CVSS6.8AI score0.02187EPSS
Exploits55References354
Positive Technologies
Positive Technologies
added 2023/02/12 12:0 a.m.2 views

PT-2023-4910

Name of the Vulnerable Software and Affected Versions libtiff version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility of the libtiff library, specifically in tools/tiffcrop.c:3502. This can be exploited to cause a denial-of-service via a crafted tiff file...

6.8CVSS6.6AI score0.00435EPSS
Exploits2References135
Positive Technologies
Positive Technologies
added 2023/02/12 12:0 a.m.3 views

PT-2023-4914

Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3609, which can be exploited to cause a denial-of-service via a crafted tiff file. This can allow attackers t...

6.8CVSS6.6AI score0.00435EPSS
Exploits1References138
Positive Technologies
Positive Technologies
added 2023/02/12 12:0 a.m.3 views

PT-2023-4912

Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3724, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. Recommendatio...

6.8CVSS6.6AI score0.00435EPSS
Exploits1References134
Positive Technologies
Positive Technologies
added 2023/02/12 12:0 a.m.3 views

PT-2023-4913

Name of the Vulnerable Software and Affected Versions LibTIFF version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility, located in tools/tiffcrop.c:3516, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. Recommendatio...

6.8CVSS6.6AI score0.00435EPSS
Exploits1References134
Positive Technologies
Positive Technologies
added 2023/02/12 12:0 a.m.2 views

PT-2023-4911

Name of the Vulnerable Software and Affected Versions libtiff version 4.4.0 Description The issue is related to an out-of-bounds write in the tiffcrop utility of the libtiff library, specifically in the files libtiff/tif unix.c:368, tools/tiffcrop.c:2903, and tools/tiffcrop.c:6778. This can be...

6.8CVSS6.6AI score0.00461EPSS
Exploits2References135
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.34 views

RHEL 8 : libtiff (RHSA-2023:0095)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0095 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from...

6.5CVSS6.7AI score0.01255EPSS
Exploits7References21
OSV
OSV
added 2023/01/10 11:35 a.m.5 views

SUSE-SU-2023:0060-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2022-3570: Fixed a potential crash in the tiffcrop utility bsc1205422. - CVE-2022-3598: Fixed a potential crash in the tiffcrop utility bsc1204642...

7.7CVSS7AI score0.00938EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2023/01/10 12:0 a.m.34 views

EulerOS Virtualization 2.9.0 : libtiff (EulerOS-SA-2023-1226)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libtiff's tiffcrop utility has a uint32t underflow that can lead to out of bounds read and write. An attacker who supplies a...

5.5CVSS6.5AI score0.00537EPSS
Exploits1References5
Rows per page
Query Builder