Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-0804
LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.
Libtiff Libtiff
6.1
CVSSv3
CVE-2023-1916
A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue aff...
Libtiff Libtiff
6.5
CVSSv3
CVE-2022-40090
An issue exists in function TIFFReadDirectory libtiff prior to 4.4.0 allows malicious users to cause a denial of service via crafted TIFF file.
Libtiff Libtiff
6.5
CVSSv3
CVE-2016-5318
Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and previous versions allows remote malicious users to crash the application via a crafted tiff.
Libtiff Libtiff
NA
CVE-2006-3460
Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) prior to 3.8.2 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size (TiffScanLineSiz...
Libtiff Libtiff
NA
CVE-2006-3461
Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) prior to 3.8.2 might allow context-dependent malicious users to execute arbitrary code via unknown vectors.
Libtiff Libtiff
NA
CVE-2006-3462
Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) prior to 3.8.2 might allow context-dependent malicious users to execute arbitrary code via unknown vectors involving decoding large RLE images.
Libtiff Libtiff
NA
CVE-2006-3463
The EstimateStripByteCounts function in TIFF library (libtiff) prior to 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent malicious users to cause a denial of service via a large td_nstrips value, which triggers an inf...
Libtiff Libtiff
NA
CVE-2006-3464
TIFF library (libtiff) prior to 3.8.2 allows context-dependent malicious users to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving &...
Libtiff Libtiff
NA
CVE-2006-3465
Unspecified vulnerability in the custom tag support for the TIFF library (libtiff) prior to 3.8.2 allows remote malicious users to cause a denial of service (instability or crash) and execute arbitrary code via unknown vectors.
Libtiff Libtiff
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »