Vulnerabilities > Libtiff
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-08-12 | CVE-2024-7006 | A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. | 7.5 |
2024-01-25 | CVE-2023-52355 | Out-of-bounds Write vulnerability in multiple products An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. | 7.5 |
2024-01-25 | CVE-2023-52356 | Out-of-bounds Write vulnerability in multiple products A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. | 7.5 |
2023-11-24 | CVE-2023-6277 | Resource Exhaustion vulnerability in multiple products An out-of-memory flaw was found in libtiff. | 6.5 |
2023-11-02 | CVE-2023-3164 | Out-of-bounds Write vulnerability in multiple products A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. | 5.5 |
2023-10-05 | CVE-2023-40745 | Integer Overflow or Wraparound vulnerability in multiple products LibTIFF is vulnerable to an integer overflow. | 6.5 |
2023-10-05 | CVE-2023-41175 | Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. | 6.5 |
2023-10-04 | CVE-2023-3576 | Memory Leak vulnerability in multiple products A memory leak flaw was found in Libtiff's tiffcrop utility. | 5.5 |
2023-08-22 | CVE-2022-40090 | Infinite Loop vulnerability in Libtiff An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file. | 6.5 |
2023-08-22 | CVE-2020-18768 | Out-of-bounds Write vulnerability in Libtiff 4.0.10 There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in libtiff 4.0.10, which allows an attacker to cause a denial-of-service through a crafted tiff file. | 5.5 |