Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1544
Stack-based buffer overflow in libTIFF prior to 3.7.2 allows remote malicious users to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.4
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.6
Libtiff Libtiff 3.5.7
1 EDB exploit
NA
CVE-2004-1308
Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote malicious users to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflo...
Libtiff Libtiff 3.4
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.5.2
NA
CVE-2009-2347
Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 up to and including 3.8.2, 3.9, and 4.0 allow context-dependent malicious users to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a heap-based buff...
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9
Libtiff Libtiff 4.0
Libtiff Libtiff 3.8.2
NA
CVE-2005-2452
libtiff up to 3.7.0 allows remote malicious users to cause a denial of service (application crash) via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in (1) tif_strip.c and (2) tif_tile.c, a different vulnerability than CV...
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.5.5
NA
CVE-2010-2233
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, relat...
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.9.0
NA
CVE-2010-2595
The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote malicious users to cause a denial of service (application crash) via a crafted TIFF image that triggers an array index ...
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.9.2
NA
CVE-2010-2597
The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote malicious users to cause a denial of service (application crash) via a crafted TIFF image, related to "downsampled OJPEG input" ...
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.9.2
NA
CVE-2010-2596
The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote malicious users to cause a denial of service (assertion failure and application exit) via a crafted TIFF image, related to "downsampled OJPEG input."
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.9.2
6.5
CVSSv3
CVE-2023-3316
A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.
Libtiff Libtiff
5.5
CVSSv3
CVE-2023-26965
loadImage() in tools/tiffcrop.c in LibTIFF up to and including 4.5.0 has a heap-based use after free via a crafted TIFF image.
Libtiff Libtiff
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »