Search for packages
| purl | pkg:deb/debian/tiff@4.7.1-2?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-15g8-3ryu-h3ga | Integer Overflow or Wraparound A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow. |
CVE-2023-41175
|
| VCID-16b1-3dpt-vff8 | libTIFF contains buffer overflows that could result in arbitrary code execution. |
CVE-2006-2193
|
| VCID-1asc-7axg-6ben | security update |
CVE-2018-15209
|
| VCID-1cjh-zx12-2fh2 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5318
|
| VCID-1csm-m3wq-tbck | security update |
CVE-2017-11335
|
| VCID-1dhy-s5x3-fuf7 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2596
|
| VCID-1ecn-xrs5-hubq | security update |
CVE-2015-1547
|
| VCID-1hfc-b4qr-jqgk | Loop with Unreachable Exit Condition ('Infinite Loop') An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file. |
CVE-2022-40090
|
| VCID-1j12-qxks-wkdh | security update |
CVE-2016-10270
|
| VCID-1mh3-q3y5-qyg1 | Out-of-bounds Read LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa. |
CVE-2022-1622
|
| VCID-1nme-2pjx-q7hp | libtiff: NULL pointer dereference in tif_dirinfo.c |
CVE-2024-7006
|
| VCID-1pbp-smgt-duey | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3623
|
| VCID-1rsr-q1uf-ekav | security update |
CVE-2017-18013
|
| VCID-255p-pm39-1bb3 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3619
|
| VCID-25fx-7kmb-fqhm | Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4. |
CVE-2022-0924
|
| VCID-28t9-d8gb-b3h9 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3633
|
| VCID-2a5b-7k5n-73fx | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3625
|
| VCID-2ds7-xq64-9ue2 | NULL Pointer Dereference A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones. |
CVE-2023-3316
|
| VCID-2e1s-2q8y-h3er | libtiff: Assertion failure in TIFFWriteDirectoryTagCheckedRational |
CVE-2016-10371
|
| VCID-2e7g-3p2y-dfcc | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2482
|
| VCID-2hvh-x482-5qhw | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7593
|
| VCID-2qg1-nxq2-jkht | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7592
|
| VCID-2u8w-cy3j-9fen | Out-of-bounds Write LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. |
CVE-2023-0800
|
| VCID-36t6-pnx8-xugd | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3624
|
| VCID-38sj-85gt-sfhe | Out-of-bounds Write A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file. |
CVE-2023-3164
|
| VCID-39ee-trms-qkes | libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c |
CVE-2020-19144
|
| VCID-3rd2-fv4n-tybf | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-9403
|
| VCID-3wfj-nc9t-xfgp | Integer Overflow or Wraparound LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow. |
CVE-2023-40745
|
| VCID-43cd-stdq-pbc9 | libtiff: heap-based buffer over-read in TIFFWriteScanline function in tif_write.c |
CVE-2018-10779
|
| VCID-44ee-ueju-ykae | libtiff: division by zero issues in tiffcrop |
CVE-2022-2057
|
| VCID-44zu-mtmq-57cm | Out-of-bounds Write LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. |
CVE-2023-0801
|
| VCID-45tr-e5rv-6uch | security update |
CVE-2016-9540
|
| VCID-45zg-bst2-byff | security update |
CVE-2017-10688
|
| VCID-48tr-y71p-7fbb | libtiff: Assertion fail in rotateImage() function at tiffcrop.c |
CVE-2022-2520
|
| VCID-4cpt-e8k8-8fad | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3465
|
| VCID-4e6e-nkkd-j3ef | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5316
|
| VCID-4egk-vvjq-dyhw | Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e. |
CVE-2023-0795
|
| VCID-4mhv-7vrm-v7hv | Out-of-bounds Read A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff versions 4.x. |
CVE-2023-1916
|
| VCID-4mq7-s2p6-yufr | Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2. |
CVE-2022-0907
|
| VCID-4n8m-6c1e-f7ba | A vulnerability in libTIFF could lead to a Denial of Service condition. |
CVE-2018-18557
|
| VCID-4pys-mah6-hfh6 | Use After Free LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e. |
CVE-2023-0799
|
| VCID-4srx-3gbk-eqd3 | libtiff: out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c |
CVE-2022-3626
|
| VCID-5d2c-qx3t-97b9 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-1411
|
| VCID-5h29-wne5-gbd7 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8668
|
| VCID-5mak-1mkk-wkdg | NULL Pointer Dereference Null source pointer passed as an argument to `memcpy()` function within `TIFFFetchStripThing()` in `tif_dirread.c` in libtiff could lead to Denial of Service via crafted TIFF file. |
CVE-2022-0561
|
| VCID-5t8u-vcjy-t7hx | libtiff: Heap-based buffer over-read in bmp2tiff |
CVE-2017-9117
|
| VCID-5uu1-xncw-vkej | security update |
CVE-2014-8128
|
| VCID-5y1x-36cj-gbdk | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-3087
|
| VCID-66pb-huvq-s7d9 | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3462
|
| VCID-6cry-skqu-zke9 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2020-35522
|
| VCID-6dt6-ppka-b3ct | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian. |
CVE-2023-26966
|
| VCID-6fqg-cbea-97g2 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2481
|
| VCID-6kck-g3z6-cuge | libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c |
CVE-2022-2867
|
| VCID-6ngq-ungb-sycm | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-8331
|
| VCID-6q62-2xsj-6kgp | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-5225
|
| VCID-6sb9-u71x-j7f5 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2020-35523
|
| VCID-6sx9-1yfw-63cg | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2020-35521
|
| VCID-6wzx-7a3m-ufhm | libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c |
CVE-2022-3627
|
| VCID-72yx-48n1-jbfs | Out-of-bounds Read LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa. |
CVE-2022-1623
|
| VCID-76g4-kacn-7yg7 | libtiff: Double free or corruption in rotateImage() function at tiffcrop.c |
CVE-2022-2519
|
| VCID-7a2s-a1kp-wke1 | security update |
CVE-2016-10269
|
| VCID-7dzd-xznd-jug7 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-9297
|
| VCID-7fes-a88m-q3ft | security update |
CVE-2016-10271
|
| VCID-7jpu-rtje-mke4 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. |
CVE-2018-19210
|
| VCID-7kmu-5yen-hfd1 | NULL Pointer Dereference A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file, resulting in a program crash or denial of service. |
CVE-2023-2731
|
| VCID-7xr6-sn1k-t7cw | security update |
CVE-2016-9534
|
| VCID-7zdy-fxq2-p7gf | libtiff: libtiff: Denial of service via double free in tiffcrop.c |
CVE-2025-61145
|
| VCID-81ew-t25a-f7gq | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8683
|
| VCID-83hb-ksrb-yyb5 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3658
|
| VCID-85fe-fkve-auhp | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2065
|
| VCID-8691-q4h3-eyaf | libtiff: division by zero issues in tiffcrop |
CVE-2022-2058
|
| VCID-86ez-rux7-8yhx | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3463
|
| VCID-88t4-hhtf-8fak | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2012-4564
|
| VCID-8f48-6u7s-xyht | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8784
|
| VCID-8kgw-n4zx-uqa8 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8783
|
| VCID-9563-bbjf-wbhu | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2012-1173
|
| VCID-98zm-dbqt-g3eg | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5323
|
| VCID-9bfu-xyxk-xuek | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2016-10268
|
| VCID-9gqh-2uat-93c7 | Out-of-bounds Write A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values. |
CVE-2023-30774
|
| VCID-9grz-pkwb-3kc5 | libtiff: libtiff: Denial of Service via buffer overflow |
CVE-2025-61144
|
| VCID-9gs4-f9yu-7uah | The libTIFF library is vulnerable to a buffer overflow, potentially resulting in the execution of arbitrary code. |
CVE-2005-1544
|
| VCID-9h6w-8dqt-23fr | libtiff: Out of bounds read in _TIFFVGetField |
CVE-2017-9147
|
| VCID-9hrr-75ht-ekfm | Multiple vulnerabilities in libTIFF could lead to the execution of arbitrary code or a Denial of Service. |
CVE-2006-2025
|
| VCID-9hyt-7jsq-vqc5 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-5563
|
| VCID-9p5z-qwmf-kyb1 | libtiff: crash when reading image with not configured compression |
CVE-2010-2598
|
| VCID-a1hq-fqkv-u7d9 | security update |
CVE-2016-9535
|
| VCID-a3ze-kdhc-muht | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7597
|
| VCID-a8jf-xmj8-cuh6 | This advisory is a False-Positive and has been removed as it only impacted documentation. |
CVE-2023-52355
|
| VCID-aa6m-3c5d-hfat | security update |
CVE-2018-12900
|
| VCID-adby-939f-37fa | security flaw |
CVE-2004-0886
|
| VCID-ajwe-qvmr-aqgs | security update |
CVE-2016-10092
|
| VCID-ak8g-1scg-jygh | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2597
|
| VCID-ap6w-9c6j-akdp | libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c |
CVE-2022-2521
|
| VCID-as9s-4ugc-ukgy | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service. |
CVE-2022-1354
|
| VCID-at8c-pabb-z3d5 | libtiff: a buffer overflow via the "invertImage()" may lead to DoS |
CVE-2020-19131
|
| VCID-b33v-b6h4-cqfe | Out-of-bounds Write LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. |
CVE-2023-0804
|
| VCID-b4hb-cxzy-suck | libtiff: LibTIFF Null Pointer Dereference |
CVE-2024-13978
|
| VCID-b6cu-zk51-hkdv | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2016-10267
|
| VCID-b7gk-w11p-2uaq | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-1961
|
| VCID-b7tf-9byk-mqa5 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2012-2113
|
| VCID-baha-p74p-rff4 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5315
|
| VCID-bap5-5e3b-8qea | LibTIFF: heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c |
CVE-2018-5360
|
| VCID-bf8s-peku-2uht | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5652
|
| VCID-bnbg-7q6h-8uhs | Out-of-bounds Write Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c. |
CVE-2023-30086
|
| VCID-cbhv-yme7-buby | libtiff: buffer overflow in TIFFVGetField() in libtiff/tif_dir.c |
CVE-2020-19143
|
| VCID-ceb4-e5mz-4fbp | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3631
|
| VCID-cm5h-b1g9-tkg9 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2020-35524
|
| VCID-cswr-9c4x-xyg8 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-6223
|
| VCID-cw7d-us77-2fhv | Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e. |
CVE-2023-0796
|
| VCID-cwen-8yyj-x3aw | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215. |
CVE-2023-25434
|
| VCID-cyy9-qtzt-3kfm | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2009-2347
|
| VCID-czxa-qesr-gfh5 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7601
|
| VCID-czyn-snja-skba | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-9448
|
| VCID-d3ym-a4bv-ybaz | security update |
CVE-2017-9935
|
| VCID-d8kh-h6vs-gqd4 | libtiff: LibTIFF memory corruption |
CVE-2025-8961
|
| VCID-dg96-zmw1-8kcp | libtiff: Libtiff Null Pointer Dereference Vulnerability |
CVE-2025-8534
|
| VCID-dh5n-3ubj-1uhu | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. |
CVE-2019-6128
|
| VCID-dhpw-sb99-2fhd | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2483
|
| VCID-dkbt-62ad-bqdq | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7599
|
| VCID-dxtf-qzfj-k3aq | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3620
|
| VCID-dzek-9w36-mfaf | security flaw |
CVE-2004-0804
|
| VCID-e6c2-ajs1-abdz | libtiff: out-of-bounds read in writeSingleSection in tools/tiffcrop.c |
CVE-2022-3599
|
| VCID-ehyj-jfjv-5ugt | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2012-3401
|
| VCID-ep61-nfbb-bfgj | libtiff: Stack-based buffer overflow when reading a tiled tiff file |
CVE-2012-5581
|
| VCID-espj-f5s9-m3am | Multiple vulnerabilities in libTIFF could lead to the execution of arbitrary code or a Denial of Service. |
CVE-2006-0405
|
| VCID-f1g1-tv8m-pudk | libtiff: Heap-based buffer overflow in tiff2pdf.c:t2p_write_pdf() |
CVE-2018-17795
|
| VCID-f2ar-xeec-1bfs | security update |
CVE-2018-17000
|
| VCID-f4kn-7w6k-y3e8 | security flaw |
CVE-2004-1307
|
| VCID-f9kb-fa42-cfbx | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2011-0192
|
| VCID-fc4f-n1be-gfbb | security flaw |
CVE-2004-1183
|
| VCID-fc93-fu34-37cx | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-9453
|
| VCID-ft63-kdey-jfgm | security flaw |
CVE-2004-1308
|
| VCID-g2kq-ch6c-nubm | libtiff: Stack-based buffer overflow in _TIFFVGetField |
CVE-2016-10095
|
| VCID-g55a-2qfb-kkev | security update |
CVE-2017-9936
|
| VCID-gg7k-u39a-kqbw | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3186
|
| VCID-gmhp-4yx2-gfbv | Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa. |
CVE-2022-0909
|
| VCID-gp1w-v49g-j3aw | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8665
|
| VCID-gsfh-epay-ckgk | security update |
CVE-2014-9655
|
| VCID-h4fa-k99r-zqdh | security update |
CVE-2018-17100
|
| VCID-h6gn-kv5x-bbd5 | Out-of-bounds Write A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out-of-bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact |
CVE-2022-0891
|
| VCID-h7df-pn57-byhx | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7598
|
| VCID-h9ap-xxmw-j7dr | Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 46dc8fcd. |
CVE-2022-1056
|
| VCID-hbvy-33n2-vqdz | security update |
CVE-2017-13726
|
| VCID-hfrr-s8ge-z7hx | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5319
|
| VCID-hj6t-qvsa-yyez | security flaw |
CVE-2004-0803
|
| VCID-hw26-k89t-s3hp | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-4244
|
| VCID-hzcx-8haz-73fn | libtiff: Memory leak in the TIFFReadDirEntryLong8Array function |
CVE-2017-9815
|
| VCID-j7hm-kkvp-uqex | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. |
CVE-2019-7663
|
| VCID-jdv4-3mf6-93hm | libtiff: integer overflow in function TIFFReadRGBATileExt of the file |
CVE-2022-3970
|
| VCID-jfme-eq8v-afht | libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c |
CVE-2020-18768
|
| VCID-jr5v-vzng-nbcb | libtiff: Out-of-bounds read in readContigTilesIntoBuffer() |
CVE-2016-9539
|
| VCID-jsn6-ej2f-t7g1 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2067
|
| VCID-ju1t-bhyh-v7du | Out-of-bounds Write processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image. |
CVE-2022-48281
|
| VCID-k2kr-482q-yucj | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-4231
|
| VCID-k6te-ecky-q7ah | Multiple vulnerabilities in libTIFF could lead to the execution of arbitrary code or a Denial of Service. |
CVE-2006-2024
|
| VCID-k8kt-55y9-qyac | NULL Pointer Dereference A null pointer dereference issue was discovered in Libtiff's tif_dir.c file. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcp utility, which triggers runtime error, causing an undefined behavior, resulting in an application crash, eventually leading to a denial of service. |
CVE-2023-2908
|
| VCID-kaub-tt1e-mkfm | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2233
|
| VCID-kpq7-5vsv-pucy | NULL Pointer Dereference Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file. |
CVE-2022-0908
|
| VCID-krkn-23as-xuh6 | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3459
|
| VCID-m79s-k9bt-akfc | libtiff: Memory leak in OJPEGReadHeaderInfoSecTablesQTable |
CVE-2017-9404
|
| VCID-m7mp-g37h-p3g9 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3622
|
| VCID-mb38-6e5v-fbah | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8781
|
| VCID-mhwh-tsst-cfaj | Out-of-bounds Read LibTIFF has an out-of-bounds read in `_TIFFmemcpy` in `tif_unix.c` in certain situations involving a custom tag and `0x0200` as the second word of the `DE` field. |
CVE-2022-22844
|
| VCID-mqad-tkgf-r3ag | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3945
|
| VCID-mwb4-9fjj-qyfs | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-7313
|
| VCID-mxxa-mkme-pude | libtiff: buffer overflow in JPEGDecode |
CVE-2011-0191
|
| VCID-myn2-cyx7-skes | Multiple vulnerabilities in libTIFF could lead to the execution of arbitrary code or a Denial of Service. |
CVE-2006-2026
|
| VCID-n3ta-dm1y-gya5 | libtiff: Libtiff Write-What-Where |
CVE-2025-9900
|
| VCID-n5xz-y6bx-myfr | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5322
|
| VCID-n614-w2nh-rqbe | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-8782
|
| VCID-ndc5-qn5u-3qbq | libtiff: LibTIFF Stack-based buffer overflow |
CVE-2025-8851
|
| VCID-ndwc-beev-43ck | Out-of-bounds Write loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. |
CVE-2023-26965
|
| VCID-nhu6-nn6n-dbb9 | Multiple boundary checking vulnerabilities in libTIFF may allow for the remote execution of arbitrary code. |
CVE-2009-2285
|
| VCID-nnvs-e9na-p7fu | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. |
CVE-2019-17546
|
| VCID-nyjs-ay8u-13gx | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2015-7554
|
| VCID-p3k1-dpdf-e3f3 | libtiff: tiff2bw tool failed memory allocation leads to crash |
CVE-2018-18661
|
| VCID-p9pe-czsr-9uhu | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3634
|
| VCID-pczq-1huj-p7hf | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3991
|
| VCID-pf5w-eted-9kc9 | security update |
CVE-2014-8127
|
| VCID-phyw-fvec-1kan | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7594
|
| VCID-pkdx-ktz1-mbbg | Missing Release of Memory after Effective Lifetime A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service. |
CVE-2023-3576
|
| VCID-pnpt-r4ke-fufh | Out-of-bounds Write LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. |
CVE-2023-0803
|
| VCID-prsj-fsuv-4ucy | security update |
CVE-2018-16335
|
| VCID-pxhu-5vet-77f1 | security update |
CVE-2019-14973
|
| VCID-pz1t-b538-mbhy | security update |
CVE-2016-10094
|
| VCID-q8kb-nt2z-sucr | security flaw |
CVE-2006-2120
|
| VCID-qbff-swap-1uf6 | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7595
|
| VCID-qez8-xv6h-e3hx | security update |
CVE-2017-11613
|
| VCID-qhmk-k16a-ufec | libtiff up to 3.7.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in (1) tif_strip.c and (2) tif_tile.c, a different vulnerability than CVE-2004-0804. |
CVE-2005-2452
|
| VCID-qj6b-fkj1-9yaw | security update |
CVE-2013-4243
|
| VCID-qsrb-hf2u-tudp | NULL Pointer Dereference Null source pointer passed as an argument to memcpy() function within `TIFFReadDirectory()` in `tif_dirread.c` in libtiff versions from to could lead to Denial of Service via a crafted TIFF file. |
CVE-2022-0562
|
| VCID-qtke-83xy-v7g7 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2443
|
| VCID-qy8p-meqk-8yej | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7600
|
| VCID-qza9-kt1g-j7h7 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2012-2088
|
| VCID-r186-xqyn-ffey | libtiff: libtiff: Denial of Service via NULL pointer dereference in tif_open.c |
CVE-2025-61143
|
| VCID-r4k1-psbb-53gd | security update |
CVE-2018-5784
|
| VCID-r8kc-zrjf-5ycv | security update |
CVE-2018-17101
|
| VCID-rcqs-8say-7bb9 | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2012-4447
|
| VCID-rhxp-g6d5-9be9 | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-4232
|
| VCID-rmap-8g2y-abdc | libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c |
CVE-2022-3598
|
| VCID-rn1a-sww4-bffd | security update |
CVE-2018-10963
|
| VCID-rp7t-x7gz-9udg | libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c |
CVE-2023-6228
|
| VCID-rqmj-ns2c-jbh4 | security update |
CVE-2016-9533
|
| VCID-rspm-rpj5-8qfj | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7596
|
| VCID-ruhz-ty5e-nkgr | libtiff: tiffcrop.c has uint32_t underflow which leads to out of bounds read and write in extractContigSamples8bits() |
CVE-2022-2869
|
| VCID-s2xb-r3c7-7fc4 | security update |
CVE-2016-9537
|
| VCID-s4k8-v3sj-23fw | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5321
|
| VCID-s7s4-ux2t-3yc5 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3990
|
| VCID-s82q-vnkh-d7av | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2631
|
| VCID-s95z-s4sd-cffs | libtiff: division by zero issues in tiffcrop |
CVE-2022-2056
|
| VCID-sb4b-p69e-w3cn | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2630
|
| VCID-sefx-74dq-pqe1 | security update |
CVE-2018-8905
|
| VCID-sevq-1vjx-jfc7 | Multiple buffer underflow vulnerabilities in libTIFF may allow for the remote execution of arbitrary code. |
CVE-2008-2327
|
| VCID-sj4y-jbfp-uua3 | security update |
CVE-2016-10266
|
| VCID-spqg-q1z6-pyex | security update |
CVE-2016-9538
|
| VCID-sqxq-hg7v-d7gv | libtiff: LibTIFF Buffer Overflow |
CVE-2025-8177
|
| VCID-sts8-7k84-kubv | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3460
|
| VCID-t59f-1ywy-vkcx | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-4665
|
| VCID-tddn-m5ke-euas | libtiff: A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit |
CVE-2022-34526
|
| VCID-tfyj-y9q3-t3ar | libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c |
CVE-2022-2953
|
| VCID-tg7w-mbkg-7uhj | Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e. |
CVE-2023-0798
|
| VCID-tgf9-ax81-fub4 | libtiff: heap Buffer overflows in tiffcrop.c |
CVE-2022-3570
|
| VCID-ttb7-w41r-4kfn | libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing |
CVE-2026-4775
|
| VCID-u1mj-pxtw-7qet | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3632
|
| VCID-ua38-ur2u-eues | Out-of-bounds Write A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service. |
CVE-2023-52356
|
| VCID-ucr1-vp5p-jqck | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service. |
CVE-2022-1355
|
| VCID-ukgj-45m7-6uba | libtiff: Out-of-memory in TIFFOpen via a craft file |
CVE-2023-6277
|
| VCID-urf7-ke3s-1fd4 | libTIFF contains buffer overflows that could result in arbitrary code execution. |
CVE-2006-2656
|
| VCID-v4n9-tbq5-f3a3 | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2011-1167
|
| VCID-v4rx-c1w4-pbb3 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service. |
CVE-2023-3618
|
| VCID-vju4-pghv-47bx | libtiff: LibTIFF Use-After-Free Vulnerability |
CVE-2025-8176
|
| VCID-vn6c-kuq7-k3hv | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2014-8130
|
| VCID-vnnq-3w94-cbe3 | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3464
|
| VCID-vrtj-45t6-cqec | Out-of-bounds Write A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c. |
CVE-2023-30775
|
| VCID-vu6r-464p-4ue3 | Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125. |
CVE-2022-4645
|
| VCID-vv32-13t8-1fht | security update |
CVE-2014-9330
|
| VCID-vxd8-dh75-fqah | libtiff: Heap-based buffer overflow in PackBitsEncode function in tif_packbits.c |
CVE-2017-17942
|
| VCID-vzr7-wz88-h7gx | libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits() |
CVE-2022-2868
|
| VCID-w1eb-sep4-mbdn | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2009-5022
|
| VCID-wes8-vrs4-gygk | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-9532
|
| VCID-wk1z-n789-n7cg | security update |
CVE-2018-7456
|
| VCID-wpd2-zcyv-s7g8 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-9273
|
| VCID-wuzx-t7h4-uqa8 | security update |
CVE-2017-13727
|
| VCID-wwvq-jsvj-rqgf | Multiple vulnerabilities have been found in libTIFF, allowing remote attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-1960
|
| VCID-wza2-4rcj-hkcd | Out-of-bounds Read LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e. |
CVE-2023-0797
|
| VCID-x7w1-k9zt-qkab | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in a Denial of Service condition. |
CVE-2017-17095
|
| VCID-x91e-13q2-yked | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5317
|
| VCID-x9hb-1bes-k3hy | Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in the execution of arbitrary code. |
CVE-2017-7602
|
| VCID-x9xf-wuyn-6ffg | Out-of-bounds Write LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127. |
CVE-2023-0802
|
| VCID-xg5z-jss1-3ycp | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5102
|
| VCID-xg6v-katm-67et | security update |
CVE-2016-9536
|
| VCID-xmwn-vxux-h7g3 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753. |
CVE-2023-25435
|
| VCID-xx3b-d12j-8qc4 | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-5314
|
| VCID-y3rw-rrkj-wkfv | libTIFF contains several vulnerabilities that could result in arbitrary code execution. |
CVE-2006-3461
|
| VCID-y7zh-9g8h-z3ce | security update |
CVE-2016-10272
|
| VCID-y96w-zrrr-dqav | libtiff: Integer overflow in tools/bmp2tiff.c |
CVE-2015-8870
|
| VCID-yfxw-tmnn-byc6 | libtiff: LibTIFF memory leak |
CVE-2025-9165
|
| VCID-ytpu-tcxj-guex | Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. |
CVE-2016-3621
|
| VCID-ywac-4ng8-6uhc | security update |
CVE-2017-12944
|
| VCID-z17v-aeta-1qb7 | security update |
CVE-2014-8129
|
| VCID-z1vf-mhw2-ducs | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV. |
CVE-2023-25433
|
| VCID-z4fp-77gf-gydw | libtiff: memory leak in bmp2tiff tool |
CVE-2018-10801
|
| VCID-zd2w-uhnu-x3an | security update |
CVE-2016-10093
|
| VCID-zedn-437q-47b2 | Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 5e180045. |
CVE-2022-0865
|
| VCID-zszt-dw66-13ev | Multiple vulnerabilities in libTIFF could result in execution of arbitrary code or Denial of Service. |
CVE-2010-2595
|
| VCID-zwbu-yezc-4yck | libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix |
CVE-2022-3597
|