Libtiff

Libtiff

261 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-30775

  • EPSS 0.06%
  • Veröffentlicht 19.05.2023 15:15:08
  • Zuletzt bearbeitet 21.01.2025 18:15:13

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c.

5.5

CVE-2023-2731

Exploit
  • EPSS 0.01%
  • Veröffentlicht 17.05.2023 22:15:11
  • Zuletzt bearbeitet 22.01.2025 19:15:09

A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TI...

5.5

CVE-2023-30086

Exploit
  • EPSS 0.08%
  • Veröffentlicht 09.05.2023 16:15:14
  • Zuletzt bearbeitet 29.01.2025 15:15:15

Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.

6.1

CVE-2023-1916

Exploit
  • EPSS 0.02%
  • Veröffentlicht 10.04.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 07:40:08

A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited informat...

5.5

CVE-2022-4645

Exploit
  • EPSS 0.01%
  • Veröffentlicht 03.03.2023 16:15:09
  • Zuletzt bearbeitet 04.04.2025 21:15:42

LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.

5.5

CVE-2023-0798

Exploit
  • EPSS 0.01%
  • Veröffentlicht 13.02.2023 23:15:12
  • Zuletzt bearbeitet 21.03.2025 19:15:41

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

5.5

CVE-2023-0799

Exploit
  • EPSS 0.01%
  • Veröffentlicht 13.02.2023 23:15:12
  • Zuletzt bearbeitet 21.03.2025 19:15:41

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

5.5

CVE-2023-0800

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.02.2023 23:15:12
  • Zuletzt bearbeitet 21.03.2025 19:15:41

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.

5.5

CVE-2023-0801

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.02.2023 23:15:12
  • Zuletzt bearbeitet 21.03.2025 19:15:42

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from s...

5.5

CVE-2023-0802

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.02.2023 23:15:12
  • Zuletzt bearbeitet 21.03.2025 19:15:42

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.