Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-6228
An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash.
Libtiff Libtiff -
5.5
CVSSv3
CVE-2016-5102
Buffer overflow in the readgifimage function in gif2tiff.c in the gif2tiff tool in LibTIFF 4.0.6 allows remote malicious users to cause a denial of service (segmentation fault) via a crafted gif file.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3624
The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds write) by setting the "-v" option to -1.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3631
The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0.6 and previous versions allow remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to the bytecounts[] array variable.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3633
The setrow function in the thumbnail tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to the src variable.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3634
The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3658
The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.
Libtiff Libtiff
6.1
CVSSv3
CVE-2023-1916
A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue aff...
Libtiff Libtiff
5.5
CVSSv3
CVE-2015-7313
LibTIFF allows remote malicious users to cause a denial of service (memory consumption and crash) via a crafted tiff file.
Libtiff Libtiff -
6.5
CVSSv3
CVE-2023-3316
A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.
Libtiff Libtiff
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »