Libtiff

Libtiff

262 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 2.24%
  • Veröffentlicht 02.07.2010 12:43:53
  • Zuletzt bearbeitet 16.06.2026 23:21:03

The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF image, related to "downsampled OJPEG input."

Exploit
  • EPSS 2.79%
  • Veröffentlicht 02.07.2010 12:43:53
  • Zuletzt bearbeitet 16.06.2026 23:21:03

The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to "downsampled...

  • EPSS 4.5%
  • Veröffentlicht 02.07.2010 12:43:52
  • Zuletzt bearbeitet 16.06.2026 23:20:21

tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a c...

  • EPSS 3.19%
  • Veröffentlicht 24.06.2010 17:30:01
  • Zuletzt bearbeitet 16.06.2026 23:20:45

The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetFiel...

  • EPSS 5.57%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:54

Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.

  • EPSS 4.78%
  • Veröffentlicht 24.06.2010 12:30:01
  • Zuletzt bearbeitet 16.06.2026 23:19:55

Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance ...

  • EPSS 4.15%
  • Veröffentlicht 14.07.2009 20:30:00
  • Zuletzt bearbeitet 16.06.2026 23:09:15

Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a hea...

Exploit
  • EPSS 8%
  • Veröffentlicht 01.07.2009 13:00:01
  • Zuletzt bearbeitet 16.06.2026 23:09:08

Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327.

  • EPSS 4.13%
  • Veröffentlicht 27.08.2008 20:41:00
  • Zuletzt bearbeitet 16.06.2026 22:53:33

Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, ...

  • EPSS 53.05%
  • Veröffentlicht 03.08.2006 01:04:00
  • Zuletzt bearbeitet 16.06.2026 22:27:06

Multiple stack-based buffer overflows in the TIFF library (libtiff) before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, incl...