Vulnerabilities (CVE)

Vendor filter

Libtiff Subscribe

Filter

175 total CVE
CVE Vendors Products Updated CVSS
CVE-2017-9117 2 Libtiff, Canonical 2 Libtiff, Ubuntu Linux 2019-10-03 7.5
In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.
CVE-2017-12944 1 Libtiff 1 Libtiff 2019-10-03 5.0
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote attackers to cause a denial of service (allocation failure and application crash) in the TIFFFetchStripThing...
CVE-2017-13726 1 Libtiff 1 Libtiff 2019-10-03 4.3
There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.
CVE-2017-16232 3 Libtiff, Opensuse, Suse 5 Libtiff, Leap, Linux Enterprise Desktop and 2 more 2019-10-03 5.0
** DISPUTED ** LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third parties were unable to reproduce...
CVE-2017-9935 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-10-03 6.8
In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup,...
CVE-2018-10801 1 Libtiff 1 Libtiff 2019-10-03 4.3
TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff.
CVE-2017-9403 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-10-03 4.3
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-9936 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-10-03 4.3
In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.
CVE-2018-10779 2 Libtiff, Canonical 2 Libtiff, Ubuntu Linux 2019-10-03 4.3
TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buffer over-read, as demonstrated by bmp2tiff.
CVE-2017-9404 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-10-03 4.3
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2018-10963 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-10-03 4.3
The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726.
CVE-2017-9815 2 Libtiff, Canonical 2 Libtiff, Ubuntu Linux 2019-10-03 4.3
In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function _TIFFmalloc in tif_unix.c) via a crafted file.
CVE-2017-5563 1 Libtiff 1 Libtiff 2019-10-03 6.8
LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read in tif_lzw.c resulting in DoS or code execution via a crafted bmp image to tools/bmp2tiff.
CVE-2017-7594 1 Libtiff 1 Libtiff 2019-10-03 4.3
The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (memory leak) via a crafted image.
CVE-2017-17942 1 Libtiff 1 Libtiff 2019-10-03 6.8
In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.
CVE-2017-13727 1 Libtiff 1 Libtiff 2019-10-03 4.3
There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.
CVE-2019-14973 1 Libtiff 1 Libtiff 2019-08-25 4.3
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
CVE-2018-8905 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-08-06 6.8
In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.
CVE-2018-7456 3 Libtiff, Canonical, Debian 3 Libtiff, Ubuntu Linux, Debian Linux 2019-08-06 4.3
A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of...
CVE-2018-18661 2 Libtiff, Canonical 2 Libtiff, Ubuntu Linux 2019-08-06 4.3
An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function LZWDecode in the file tif_lzw.c.