Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-52355
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote malicious user to cause a denial of service via a crafted input with a size smaller than 379 KB.
Libtiff Libtiff
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
1 Github repository
NA
CVE-2023-52356
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote malicious user to cause a heap-buffer overflow, leading to a denial of service.
Libtiff Libtiff -
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
1 Github repository
NA
CVE-2023-6228
An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash.
Libtiff Libtiff -
NA
CVE-2023-6277
An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote malicious user to cause a denial of service via a craft input with size smaller than 379 KB.
Libtiff Libtiff -
Fedoraproject Fedora 38
1 Github repository
NA
CVE-2023-3164
A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows malicious users to cause a denial of service via a crafted tiff file.
Libtiff Libtiff
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2023-40745
LibTIFF is vulnerable to an integer overflow. This flaw allows remote malicious users to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
Libtiff Libtiff
Fedoraproject Fedora -
Redhat Enterprise Linux 8.0
Netapp Active Iq Unified Manager -
Redhat Enterprise Linux 9.0
NA
CVE-2023-41175
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote malicious users to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
Libtiff Libtiff
Fedoraproject Fedora -
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2023-3576
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an malicious user to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, e...
Libtiff Libtiff
Fedoraproject Fedora -
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2022-40090
An issue exists in function TIFFReadDirectory libtiff prior to 4.4.0 allows malicious users to cause a denial of service via crafted TIFF file.
Libtiff Libtiff
NA
CVE-2020-18768
There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in libtiff 4.0.10, which allows an malicious user to cause a denial-of-service through a crafted tiff file.
Libtiff Libtiff 4.0.10
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »