Download
| Alert*
oval:org.secpod.oval:def:1601818
Multiple potential integer overflow in raw2tiff.c in libtiff less than = 4.5.1 can allow remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image which triggers a heap-based buffer overflow oval:org.secpod.oval:def:19500423 LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b. processCropSelections in tools/tiff ... oval:org.secpod.oval:def:612832 Brief introduction Multiple buffer overflows and memory leak issues have been found in tiff, the Tag Image File Format library and tools, which may cause denial of service when processing a crafted TIFF image. oval:org.secpod.oval:def:96528 Brief introduction Multiple buffer overflows and memory leak issues have been found in tiff, the Tag Image File Format library and tools, which may cause denial of service when processing a crafted TIFF image. oval:org.secpod.oval:def:96516 Brief introduction Multiple buffer overflows and memory leak issues have been found in tiff, the Tag Image File Format library and tools, which may cause denial of service when processing a crafted TIFF image. oval:org.secpod.oval:def:89051673 This update for tiff fixes the following issues: * CVE-2023-41175: Fixed potential integer overflow in raw2tiff.c . * CVE-2023-38288: Fixed potential integer overflow in raw2tiff.c . * CVE-2023-40745: Fixed integer overflow in tiffcp.c . * CVE-2015-8668: Fixed Heap-based buffer overflow in bmp2tiff ... oval:org.secpod.oval:def:89051678 This update for tiff fixes the following issues: * CVE-2023-41175: Fixed potential integer overflow in raw2tiff.c . * CVE-2023-38288: Fixed potential integer overflow in raw2tiff.c . * CVE-2023-40745: Fixed integer overflow in tiffcp.c . oval:org.secpod.oval:def:2600588 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. oval:org.secpod.oval:def:509287 The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: libtiff: infinite loop via a crafted TIFF file libtiff: segmentation fault in Fax3Encode in libtiff/tif_fax3.c libtiff: integer overflow in tiffcp.c libtiff: potential integer overf ... |