Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3462
Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) prior to 3.8.2 might allow context-dependent malicious users to execute arbitrary code via unknown vectors involving decoding large RLE images.
Libtiff Libtiff
5.5
CVSSv3
CVE-2023-0802
LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.
Libtiff Libtiff
5.5
CVSSv3
CVE-2023-0803
LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3631
The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0.6 and previous versions allow remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to the bytecounts[] array variable.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3624
The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds write) by setting the "-v" option to -1.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3633
The setrow function in the thumbnail tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to the src variable.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3634
The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.
Libtiff Libtiff
7.5
CVSSv3
CVE-2016-3658
The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.
Libtiff Libtiff
5.5
CVSSv3
CVE-2023-6228
An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash.
Libtiff Libtiff -
NA
CVE-2004-0804
Vulnerability in tif_dirread.c for libtiff allows remote malicious users to cause a denial of service (application crash) via a TIFF image that causes a divide-by-zero error when the number of row bytes is zero, a different vulnerability than CVE-2005-2452.
Libtiff Libtiff
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »