EUVD-2017-0040

Malware in sbrugna...

OSV-2024-465 Security exception in com.drew.imaging.tiff.TiffReader.processIfd

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=68845 Crash type: Security exception Crash state: com.drew.imaging.tiff.TiffReader.processIfd java.base/java.lang.Throwable.printStackTrace com.codeintelligence.jazzer.api.Jazzer.guideTowardsEquality...

SUSE CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS attacks. A malicious user can pass a tiff file to the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp to cause an exception that can crash the application...

libreoffice/tiffuzzer: Heap-buffer-overflow in TIFFReader::ReadTIFF

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5076632927731712 Project: libreoffice Fuzzer: libFuzzerlibreofficetiffuzzer Fuzz target binary: tiffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...

libreoffice/tiffuzzer: Heap-buffer-overflow in TIFFReader::ReadTIFF

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=4857944500862976 Project: libreoffice Fuzzer: libFuzzerlibreofficetiffuzzer Fuzz target binary: tiffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...

libreoffice/tiffuzzer: Heap-buffer-overflow in TIFFReader::ReadTIFF

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5658110061445120 Project: libreoffice Fuzzer: libFuzzerlibreofficetiffuzzer Fuzz target binary: tiffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...

libreoffice: Heap-buffer-overflow in BitmapWriteAccess::SetPaletteColor

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5288134717734912 Project: libreoffice Fuzzer: libFuzzerlibreofficetiffuzzer Fuzz target binary: tiffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: Heap-buffer-overfl...

PYSEC-2017-126

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

Authentication flaw

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

CVE-2017-11683

The CVE-2017-11683 entry concerns Exiv2 0.26 with a reachable assertion in Internal::TiffReader::visitDirectory (tiffvisitor.cpp) that can enable a remote denial of service via crafted input. Connected sources confirm this is a real issue affecting Exiv2’s TIFF/metadata parsing path, not a local ...

CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

UBUNTU-CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

PT-2017-4086 · Exiv2 +4 · Exiv2 +4

Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.26 Description: The issue is related to a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp. This can lead to a remote denial of service attack via crafted input. The vulnerability is...

libreoffice: Crash in CCIDecompressor::DecompressScanline

Project: git://anongit.freedesktop.org/libreoffice/core Detailed report: https://oss-fuzz.com/testcase?key=5956342118350848 Project: libreoffice Fuzzer: libFuzzerlibreofficetiffuzzer Fuzz target binary: tiffuzzer Job Type: libfuzzerasanlibreoffice Platform Id: linux Crash Type: UNKNOWN Crash...