Libtiff

Libtiff

258 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2017-7593

  • EPSS 0.36%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote attackers to obtain sensitive information from process memory via a crafted image.

5.5

CVE-2017-7594

  • EPSS 0.44%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (memory leak) via a crafted image.

5.5

CVE-2017-7595

  • EPSS 0.43%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.

7.8

CVE-2017-7596

Exploit
  • EPSS 0.36%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image...

7.8

CVE-2017-7597

Exploit
  • EPSS 0.36%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact vi...

7.8

CVE-2017-7598

Exploit
  • EPSS 0.7%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.

7.8

CVE-2017-7599

Exploit
  • EPSS 0.31%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

LibTIFF 4.0.7 has an "outside the range of representable values of type short" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image...

7.8

CVE-2017-7600

Exploit
  • EPSS 0.35%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

LibTIFF 4.0.7 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a craft...

7.8

CVE-2017-7601

Exploit
  • EPSS 0.52%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.

7.8

CVE-2017-7602

Exploit
  • EPSS 0.52%
  • Veröffentlicht 09.04.2017 14:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.