Libtiff

Libtiff

258 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2016-3634

  • EPSS 0.69%
  • Published 03.10.2016 16:09:11
  • Last modified 12.04.2025 10:46:40

The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.

7.5

CVE-2016-3633

  • EPSS 0.45%
  • Published 03.10.2016 16:09:10
  • Last modified 12.04.2025 10:46:40

The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the src variable.

7.5

CVE-2016-3631

  • EPSS 0.79%
  • Published 03.10.2016 16:09:09
  • Last modified 12.04.2025 10:46:40

The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0.6 and earlier allow remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the bytecounts[] array variable.

6.5

CVE-2016-3625

  • EPSS 0.64%
  • Published 03.10.2016 16:09:07
  • Last modified 12.04.2025 10:46:40

tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

7.5

CVE-2016-3624

Exploit
  • EPSS 1.33%
  • Published 03.10.2016 16:09:06
  • Last modified 12.04.2025 10:46:40

The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) by setting the "-v" option to -1.

7.5

CVE-2016-3623

Exploit
  • EPSS 1.59%
  • Published 03.10.2016 16:09:05
  • Last modified 12.04.2025 10:46:40

The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.

6.5

CVE-2016-3622

Exploit
  • EPSS 0.91%
  • Published 03.10.2016 16:09:04
  • Last modified 12.04.2025 10:46:40

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted TIFF image.

8.8

CVE-2016-3621

  • EPSS 0.68%
  • Published 03.10.2016 16:09:02
  • Last modified 12.04.2025 10:46:40

The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.

7.5

CVE-2016-3620

Exploit
  • EPSS 0.59%
  • Published 03.10.2016 16:09:01
  • Last modified 12.04.2025 10:46:40

The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c zip" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.

6.5

CVE-2016-3619

Exploit
  • EPSS 0.92%
  • Published 03.10.2016 16:09:00
  • Last modified 12.04.2025 10:46:40

The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c none" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.