CVE-2018-17000

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file ...

Debian Bug report logs - #921157 tiff: CVE-2019-6128 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 2 Feb 2019 13:09:01 UTC Severity: normal Tags: security, upstream Found in version tiff/4010-3 Fixed in ver ...

Debian Bug report logs - #902718 CVE-2018-12900 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Fri, 29 Jun 2018 21:03:01 UTC Severity: important Tags: security, upstream Found in version tiff/409-1 Fixed in version tif ...

Debian Bug report logs - #913675 tiff: CVE-2018-19210 Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 13 Nov 2018 22:24:01 UTC Severity: important Tags: security, upstream Found in version tiff/409+git181026-1 ...

Debian Bug report logs - #908778 tiff: CVE-2018-17000: null pointer deference flaw Package: src:tiff; Maintainer for src:tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 13 Sep 2018 20:39:02 UTC Severity: important Tags: security, upstream Found in v ...

Several vulnerabilities have been found in the TIFF library, which may result in denial of service or the execution of arbitrary code if malformed image files are processed For the oldstable distribution (stretch), these problems have been fixed in version 408-2+deb9u5 We recommend that you upgrade your tiff packages For the detailed security ...

A NULL pointer dereference in the function _TIFFmemcmp at tif_unixc (called from TIFFWriteDirectoryTagTransferfunction) in LibTIFF 409 allows an attacker to cause a denial-of-service through a crafted tiff file This vulnerability can be triggered by the executable tiffcp ...