Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (26)
Vulnerability Summary Aliases
VCID-1mh3-q3y5-qyg1 Out-of-bounds Read LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa. CVE-2022-1622
VCID-44ee-ueju-ykae libtiff: division by zero issues in tiffcrop CVE-2022-2057
VCID-48tr-y71p-7fbb libtiff: Assertion fail in rotateImage() function at tiffcrop.c CVE-2022-2520
VCID-4srx-3gbk-eqd3 libtiff: out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c CVE-2022-3626
VCID-6kck-g3z6-cuge libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c CVE-2022-2867
VCID-6wzx-7a3m-ufhm libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c CVE-2022-3627
VCID-72yx-48n1-jbfs Out-of-bounds Read LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa. CVE-2022-1623
VCID-76g4-kacn-7yg7 libtiff: Double free or corruption in rotateImage() function at tiffcrop.c CVE-2022-2519
VCID-8691-q4h3-eyaf libtiff: division by zero issues in tiffcrop CVE-2022-2058
VCID-9gqh-2uat-93c7 Out-of-bounds Write A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values. CVE-2023-30774
VCID-ap6w-9c6j-akdp libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c CVE-2022-2521
VCID-as9s-4ugc-ukgy Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service. CVE-2022-1354
VCID-bnbg-7q6h-8uhs Out-of-bounds Write Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c. CVE-2023-30086
VCID-e6c2-ajs1-abdz libtiff: out-of-bounds read in writeSingleSection in tools/tiffcrop.c CVE-2022-3599
VCID-jdv4-3mf6-93hm libtiff: integer overflow in function TIFFReadRGBATileExt of the file CVE-2022-3970
VCID-ju1t-bhyh-v7du Out-of-bounds Write processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image. CVE-2022-48281
VCID-rmap-8g2y-abdc libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c CVE-2022-3598
VCID-ruhz-ty5e-nkgr libtiff: tiffcrop.c has uint32_t underflow which leads to out of bounds read and write in extractContigSamples8bits() CVE-2022-2869
VCID-s95z-s4sd-cffs libtiff: division by zero issues in tiffcrop CVE-2022-2056
VCID-tddn-m5ke-euas libtiff: A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit CVE-2022-34526
VCID-tfyj-y9q3-t3ar libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c CVE-2022-2953
VCID-tgf9-ax81-fub4 libtiff: heap Buffer overflows in tiffcrop.c CVE-2022-3570
VCID-ucr1-vp5p-jqck Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service. CVE-2022-1355
VCID-vu6r-464p-4ue3 Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125. CVE-2022-4645
VCID-vzr7-wz88-h7gx libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits() CVE-2022-2868
VCID-zwbu-yezc-4yck libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix CVE-2022-3597

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T11:45:11.696428+00:00 Debian Importer Fixing VCID-tgf9-ax81-fub4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:20:46.524504+00:00 Debian Importer Fixing VCID-8691-q4h3-eyaf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:19:16.048416+00:00 Debian Importer Fixing VCID-bnbg-7q6h-8uhs https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:43:30.895760+00:00 Debian Importer Fixing VCID-rmap-8g2y-abdc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:41:20.254200+00:00 Debian Importer Fixing VCID-48tr-y71p-7fbb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:32:32.597119+00:00 Debian Importer Fixing VCID-9gqh-2uat-93c7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:25:56.183713+00:00 Debian Importer Fixing VCID-ap6w-9c6j-akdp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:58:26.656968+00:00 Debian Importer Fixing VCID-4srx-3gbk-eqd3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:39:03.446703+00:00 Debian Importer Fixing VCID-vu6r-464p-4ue3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:37:21.029004+00:00 Debian Importer Fixing VCID-72yx-48n1-jbfs https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:35:02.446160+00:00 Debian Importer Fixing VCID-vzr7-wz88-h7gx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:26:19.175217+00:00 Debian Importer Fixing VCID-ju1t-bhyh-v7du https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:20:34.895786+00:00 Debian Importer Fixing VCID-tddn-m5ke-euas https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:19:19.514253+00:00 Debian Importer Fixing VCID-6wzx-7a3m-ufhm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:11:13.285342+00:00 Debian Importer Fixing VCID-s95z-s4sd-cffs https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:07:37.616607+00:00 Debian Importer Fixing VCID-tfyj-y9q3-t3ar https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:04:21.380637+00:00 Debian Importer Fixing VCID-zwbu-yezc-4yck https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:54:17.450662+00:00 Debian Importer Fixing VCID-e6c2-ajs1-abdz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:53:58.663937+00:00 Debian Importer Fixing VCID-ucr1-vp5p-jqck https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:53:54.074928+00:00 Debian Importer Fixing VCID-ruhz-ty5e-nkgr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:50:59.096320+00:00 Debian Importer Fixing VCID-1mh3-q3y5-qyg1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:48:59.532861+00:00 Debian Importer Fixing VCID-44ee-ueju-ykae https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:46:33.686292+00:00 Debian Importer Fixing VCID-76g4-kacn-7yg7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:44:07.168171+00:00 Debian Importer Fixing VCID-6kck-g3z6-cuge https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:39:35.150376+00:00 Debian Importer Fixing VCID-jdv4-3mf6-93hm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:38:40.034765+00:00 Debian Importer Fixing VCID-as9s-4ugc-ukgy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:00:49.054042+00:00 Debian Importer Fixing VCID-tgf9-ax81-fub4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:24.420699+00:00 Debian Importer Fixing VCID-8691-q4h3-eyaf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:42:14.404342+00:00 Debian Importer Fixing VCID-bnbg-7q6h-8uhs https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:15:09.974196+00:00 Debian Importer Fixing VCID-rmap-8g2y-abdc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:13:51.211259+00:00 Debian Importer Fixing VCID-48tr-y71p-7fbb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:07:02.778562+00:00 Debian Importer Fixing VCID-9gqh-2uat-93c7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:02:09.426469+00:00 Debian Importer Fixing VCID-ap6w-9c6j-akdp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:40:53.490404+00:00 Debian Importer Fixing VCID-4srx-3gbk-eqd3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:25:22.817035+00:00 Debian Importer Fixing VCID-vu6r-464p-4ue3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:24:19.278297+00:00 Debian Importer Fixing VCID-72yx-48n1-jbfs https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:23:01.923026+00:00 Debian Importer Fixing VCID-vzr7-wz88-h7gx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:17:52.437415+00:00 Debian Importer Fixing VCID-ju1t-bhyh-v7du https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:14:29.146821+00:00 Debian Importer Fixing VCID-tddn-m5ke-euas https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:13:40.571732+00:00 Debian Importer Fixing VCID-6wzx-7a3m-ufhm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:08:57.426549+00:00 Debian Importer Fixing VCID-s95z-s4sd-cffs https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:06:50.567753+00:00 Debian Importer Fixing VCID-tfyj-y9q3-t3ar https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:04:50.545491+00:00 Debian Importer Fixing VCID-zwbu-yezc-4yck https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:32.539484+00:00 Debian Importer Fixing VCID-e6c2-ajs1-abdz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:19.487054+00:00 Debian Importer Fixing VCID-ucr1-vp5p-jqck https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:16.086091+00:00 Debian Importer Fixing VCID-ruhz-ty5e-nkgr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:56:40.946422+00:00 Debian Importer Fixing VCID-1mh3-q3y5-qyg1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:55:23.945663+00:00 Debian Importer Fixing VCID-44ee-ueju-ykae https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:53:39.260925+00:00 Debian Importer Fixing VCID-76g4-kacn-7yg7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:52:06.878889+00:00 Debian Importer Fixing VCID-6kck-g3z6-cuge https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:49:17.269374+00:00 Debian Importer Fixing VCID-jdv4-3mf6-93hm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:44.841409+00:00 Debian Importer Fixing VCID-as9s-4ugc-ukgy https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:55:14.723997+00:00 Debian Importer Fixing VCID-9gqh-2uat-93c7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:14.676061+00:00 Debian Importer Fixing VCID-bnbg-7q6h-8uhs https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.646245+00:00 Debian Importer Fixing VCID-ju1t-bhyh-v7du https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.591145+00:00 Debian Importer Fixing VCID-vu6r-464p-4ue3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.492613+00:00 Debian Importer Fixing VCID-jdv4-3mf6-93hm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.435976+00:00 Debian Importer Fixing VCID-6wzx-7a3m-ufhm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.380072+00:00 Debian Importer Fixing VCID-4srx-3gbk-eqd3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.323350+00:00 Debian Importer Fixing VCID-e6c2-ajs1-abdz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.266372+00:00 Debian Importer Fixing VCID-rmap-8g2y-abdc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.209200+00:00 Debian Importer Fixing VCID-zwbu-yezc-4yck https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.152500+00:00 Debian Importer Fixing VCID-tgf9-ax81-fub4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.095556+00:00 Debian Importer Fixing VCID-tddn-m5ke-euas https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:13.042660+00:00 Debian Importer Fixing VCID-tfyj-y9q3-t3ar https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.988537+00:00 Debian Importer Fixing VCID-ruhz-ty5e-nkgr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.940313+00:00 Debian Importer Fixing VCID-vzr7-wz88-h7gx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.892164+00:00 Debian Importer Fixing VCID-6kck-g3z6-cuge https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.841366+00:00 Debian Importer Fixing VCID-ap6w-9c6j-akdp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.785454+00:00 Debian Importer Fixing VCID-48tr-y71p-7fbb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.729606+00:00 Debian Importer Fixing VCID-76g4-kacn-7yg7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.620532+00:00 Debian Importer Fixing VCID-8691-q4h3-eyaf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.564378+00:00 Debian Importer Fixing VCID-44ee-ueju-ykae https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.509042+00:00 Debian Importer Fixing VCID-s95z-s4sd-cffs https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.453685+00:00 Debian Importer Fixing VCID-72yx-48n1-jbfs https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.406501+00:00 Debian Importer Fixing VCID-1mh3-q3y5-qyg1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.356922+00:00 Debian Importer Fixing VCID-ucr1-vp5p-jqck https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:12.302158+00:00 Debian Importer Fixing VCID-as9s-4ugc-ukgy https://security-tracker.debian.org/tracker/data/json 38.1.0