CVE-2016-10371

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file ...

Debian Bug report logs - #809066 tiff: CVE-2015-7554 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 26 Dec 2015 21:24:02 UTC Severity: important Tags: patch, security, upstream Merged with 842043 Found in versi ...

Debian Bug report logs - #862929 CVE-2016-10371 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Thu, 18 May 2017 20:42:02 UTC Severity: important Tags: security Found in version tiff/407-6 Fixed in version tiff/407-7 ...

Debian Bug report logs - #866109 tiff: CVE-2017-9935: Heap-based buffer overflow in t2p_write_pdf Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 27 Jun 2017 12:21:01 UTC Severity: grave Tags: fixed-upstream, sec ...

The TIFFWriteDirectoryTagCheckedRational function in tif_dirwritec in LibTIFF 406 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file ...