Astra Linux – Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in tiffcrop, located at line 368 of libtiff/tifunix.c. This vulnerability is invoked by lines 2903 and 6778 of tools/tiffcrop.c. This allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile...

OESA-2026-1441 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2026-1180)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the fi...

JLSEC-2025-298 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to...

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127...

Amazon Linux 2 : compat-libtiff3, --advisory ALAS2-2025-3039 (ALAS-2025-3039)

The version of compat-libtiff3 installed on the remote host is prior to 3.9.4-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3039 advisory. A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the compone...

Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680612)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680612 advisory. libtiff's tiffcrop tool has a uint32t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a...

EUVD-2023-12809

Malicious code in bioql PyPI...

EUVD-2023-12801

Malicious code in bioql PyPI...

EUVD-2023-29388

Malicious code in bioql PyPI...

LibTIFF Buffer Overflow Vulnerability

LibTIFF is LibTIFF open source a library to read and write TIFF Tagged Image File Format files , the library contains a number of command-line tools to deal with TIFF files . LibTIFF has a buffer overflow vulnerability that originates from an incorrect operation of the file tiffcrop.c, which can ...

Free of Memory not on the Heap

Overview Affected versions of this package are vulnerable to Free of Memory not on the Heap in the TIFFCROP utility. An attacker can cause denial of service by triggering memory corruption through crafted input files. Remediation Upgrade libtiff to version 4.7.1 or higher. References - GitLab Iss...

Important: libtiff

Issue Overview: Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3592) in the LibTIFF library, which allows a hacker to cause a service failure

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3592 is related to the LibTIFF library. LibTIFF and its libraries involve reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility in the LibTIFF library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility in the LibTIFF library is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the tiffcrop utility in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcp.c:948) in the libtiff library, which allows a hacker to cause a service failure

The vulnerability of the tiffcrop utility tools/tiffcp.c:948 in the libtiff library is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3488) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3488 in the libtiff library is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3701) in the libtiff library, which allows a hacker to cause a service failure

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3701 in the libtiff library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility in the libtiff library relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the tiffcrop utility (tools/tiffcrop.c:3516) in the libtiff library, which allows a hacker to cause a service failure.

The vulnerability of the tiffcrop utility tools/tiffcrop.c:3516 in the libtiff library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...