Libtiff

libtiff

262 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Libtiff

libtiff

262 CVEs

CVEs (262)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-0800 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wi...Show more LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.Show less
CVE-2023-0799 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wit...Show more LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.Show less
CVE-2023-0798 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wit...Show more LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.Show less
CVE-2023-0797 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For user...Show more LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.Show less
CVE-2023-0796 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wit...Show more LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.Show less
CVE-2023-0795 1Libtiff 1Libtiff Mar 21, 2025 Feb 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available wit...Show more LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.Show less
CVE-2022-48281 2Debian Libtiff 2Debian Linux Libtiff Apr 3, 2025 Jan 23, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
CVE-2022-3970 4Apple DebianLibtiff+1 more 7Active Iq Unified Manager Debian LinuxIpados+4 more Nov 21, 2024 Nov 13, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to in...Show more A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.Show less
CVE-2022-3627 3Debian LibtiffNetapp 3Active Iq Unified Manager Debian LinuxLibtiff May 7, 2025 Oct 21, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. For...Show more LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 236b7191.Show less
CVE-2022-3626 3Debian LibtiffNetapp 3Active Iq Unified Manager Debian LinuxLibtiff May 7, 2025 Oct 21, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. Fo...Show more LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 236b7191.Show less
CVE-2022-3599 3Debian LibtiffNetapp 3Active Iq Unified Manager Debian LinuxLibtiff May 7, 2025 Oct 21, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is ava...Show more LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.Show less
CVE-2022-3598 3Debian LibtiffNetapp 3Active Iq Unified Manager Debian LinuxLibtiff May 7, 2025 Oct 21, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources...Show more LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b.Show less
CVE-2022-3597 3Debian LibtiffNetapp 3Active Iq Unified Manager Debian LinuxLibtiff May 7, 2025 Oct 21, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. For...Show more LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 236b7191.Show less
CVE-2022-3570 2Debian Libtiff 2Debian Linux Libtiff May 7, 2025 Oct 21, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash...Show more Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impactShow less
CVE-2022-2521 2Debian Libtiff 2Debian Linux Libtiff Nov 21, 2024 Aug 31, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose() at tif_close.c:131 called by tiffcrop.c:2522 that can cause a program crash and denial of service while processing crafted i...Show more It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose() at tif_close.c:131 called by tiffcrop.c:2522 that can cause a program crash and denial of service while processing crafted input.Show less
CVE-2022-2520 2Debian Libtiff 2Debian Linux Libtiff Nov 21, 2024 Aug 31, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.
CVE-2022-2519 2Debian Libtiff 2Debian Linux Libtiff Nov 21, 2024 Aug 31, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 There is a double free or corruption in rotateImage() at tiffcrop.c:8839 found in libtiff 4.4.0rc1
CVE-2022-1355 5Debian FedoraprojectLibtiff+2 more 5Debian Linux Enterprise LinuxFedora+2 more Nov 21, 2024 Aug 31, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting...Show more A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.Show less
CVE-2022-1354 5Debian FedoraprojectLibtiff+2 more 5Debian Linux Enterprise LinuxFedora+2 more Nov 21, 2024 Aug 31, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue a...Show more A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.Show less
CVE-2022-2953 3Debian LibtiffNetapp 3Debian Linux LibtiffOntap Select Deploy Administration Utility Nov 21, 2024 Aug 29, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is av...Show more LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 48d6ece8.Show less

Previous 1 234 5...14 Next