3 matches found
CVE-2014-9655
CVE-2014-9655 affects LibTIFF: the putcontig8bitYCbCr21tile function in tif_getimage.c or the NeXTDecode function in tif_next.c can be triggered by a crafted TIFF image to cause a denial of service via uninitialized memory access. Connected advisories (Debian, CentOS, Red Hat, Amazon) describe mu...
CVE-2013-1960
CVE-2013-1960: A heap-based buffer overflow in libtiff’s tiff2pdf component (t2p_process_jpeg_strip) can crash or allow possible code execution via a crafted TIFF image. Affected: libtiff/tiff2pdf. Impact: denial of service and potential RCE as described in multiple advisories. Remediation: upgra...
CVE-2013-1961
CVE-2013-1961 : In libtiff, the t2p_write_pdf_page function in tiff2pdf is vulnerable to a stack-based buffer overflow when processing a crafted TIFF image (image length/resolution). Affects libtiff versions before 4.0.3 and can cause a denial of service (application crash). Public advisories ref...