Libtiff

libtiff

Vendor: Libtiff • 262 CVEs

CVEs (262)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-8683 2Debian Libtiff 2Debian Linux Libtiff May 6, 2026 Apr 13, 2016 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a packed TIFF image.
CVE-2015-8665 1Libtiff 1Libtiff May 6, 2026 Apr 13, 2016 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image.
CVE-2015-1547 2Debian Libtiff 2Debian Linux Libtiff May 6, 2026 Apr 13, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.
CVE-2015-8783 2Debian Libtiff 2Debian Linux Libtiff May 6, 2026 Feb 1, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds reads) via a crafted TIFF image.
CVE-2015-8782 2Debian Libtiff 2Debian Linux Libtiff May 6, 2026 Feb 1, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a crafted TIFF image, a different vulnerability than CVE-2015-8781.
CVE-2015-8781 2Debian Libtiff 2Debian Linux Libtiff May 6, 2026 Feb 1, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782.
CVE-2015-8668 3Libtiff OracleRedhat 6Enterprise Linux Enterprise Linux DesktopEnterprise Linux Workstation+3 more May 6, 2026 Jan 8, 2016 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width fie...Show more Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.Show less
CVE-2015-7554 1Libtiff 1Libtiff May 6, 2026 Jan 8, 2016 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via crafted field data in an extension ta...Show more The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image.Show less
CVE-2014-9330 1Libtiff 1Libtiff May 6, 2026 Jan 20, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.
CVE-2013-4231 1Libtiff 1Libtiff Apr 29, 2026 Jan 19, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or...Show more Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or (3) a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are disputed by Red Hat, which states that the input cannot exceed the allocated buffer size.Show less
CVE-2013-4244 1Libtiff 1Libtiff Apr 29, 2026 Sep 28, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF...Show more The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.Show less
CVE-2013-4243 2Debian Libtiff 2Debian Linux Libtiff Apr 29, 2026 Sep 10, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted hei...Show more Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.Show less
CVE-2013-4232 2Debian Libtiff 2Debian Linux Libtiff Apr 29, 2026 Sep 10, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF...Show more Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF image.Show less
CVE-2012-5581 1Libtiff 1Libtiff Apr 29, 2026 Jan 4, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image.
CVE-2012-4564 5Canonical DebianLibtiff+2 more 8Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+5 more Apr 29, 2026 Nov 11, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM image that triggers an i...Show more ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory allocation, and a heap-based buffer overflow.Show less
CVE-2012-4447 1Libtiff 1Libtiff Apr 29, 2026 Oct 28, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLo...Show more Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.Show less
CVE-2012-3401 1Libtiff 1Libtiff Apr 29, 2026 Aug 13, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attacker...Show more The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers a heap-based buffer overflow.Show less
CVE-2012-2113 1Libtiff 1Libtiff Apr 29, 2026 Jul 22, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tiff image, which triggers a heap-ba...Show more Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.Show less
CVE-2012-2088 1Libtiff 1Libtiff Apr 29, 2026 Jul 22, 2012 N/A· v4 N/A· v3 7.5 HIGH· v2 Integer signedness error in the TIFFReadDirectory function in tif_dirread.c in libtiff 3.9.4 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a...Show more Integer signedness error in the TIFFReadDirectory function in tif_dirread.c in libtiff 3.9.4 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a negative tile depth in a tiff image, which triggers an improper conversion between signed and unsigned types, leading to a heap-based buffer overflow.Show less
CVE-2012-1173 1Libtiff 1Libtiff Apr 29, 2026 Jun 4, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStr...Show more Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.Show less

Previous 1...101112 13 14 Next