Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff 4.0.3 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-9936
In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.
Libtiff Libtiff 4.0.8
Debian Debian Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
1 EDB exploit
6.5
CVSSv3
CVE-2017-9403
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows malicious users to cause a denial of service via a crafted file.
Libtiff Libtiff 4.0.7
Debian Debian Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
6.5
CVSSv3
CVE-2017-9404
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows malicious users to cause a denial of service via a crafted file.
Libtiff Libtiff 4.0.7
Debian Debian Linux 10.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
6.5
CVSSv3
CVE-2017-9147
LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote malicious users to cause a denial of service (crash) via a crafted TIFF file.
Libtiff Libtiff 4.0.7
1 EDB exploit
6.5
CVSSv3
CVE-2016-5316
Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and previous versions allows remote malicious users to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.
Libtiff Libtiff
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Project Leap 42.1
6.5
CVSSv3
CVE-2016-5317
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and previous versions, as used in GNOME nautilus, allows malicious users to cause a denial of service attack (crash) via a crafted TIFF file.
Libtiff Libtiff 4.0.6
Opensuse Opensuse 13.1
Opensuse Project Leap 42.1
Opensuse Opensuse 13.2
6.5
CVSSv3
CVE-2016-3622
The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted TIFF image.
Libtiff Libtiff 4.0.6
5.5
CVSSv3
CVE-2022-34266
The libtiff-4.0.3-35.amzn2.0.1 package for LibTIFF on Amazon Linux 2 allows malicious users to cause a denial of service (application crash), a different vulnerability than CVE-2022-0562. When processing a malicious TIFF file, an invalid range may be passed as an argument to the ...
Libtiff Libtiff 4.0.3-35
5.5
CVSSv3
CVE-2022-0562
Null source pointer passed as an argument to memcpy() function within TIFFReadDirectory() in tif_dirread.c in libtiff versions from 4.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, a fix is available with commit 5615...
Libtiff Libtiff
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2016-5322
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 9.0
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »