Vulnerabilities > Libtiff

DATE CVE VULNERABILITY TITLE RISK
2022-11-13 CVE-2022-3970 Integer Overflow or Wraparound vulnerability in multiple products
A vulnerability was found in LibTIFF.
network
low complexity
libtiff netapp CWE-190
8.8
2022-10-21 CVE-2022-3570 Out-of-bounds Write vulnerability in Libtiff
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact
local
low complexity
libtiff CWE-787
5.5
2022-10-21 CVE-2022-3597 Out-of-bounds Write vulnerability in Libtiff
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff CWE-787
6.5
2022-10-21 CVE-2022-3598 Out-of-bounds Write vulnerability in Libtiff
LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff CWE-787
6.5
2022-10-21 CVE-2022-3599 Out-of-bounds Read vulnerability in Libtiff
LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff CWE-125
6.5
2022-10-21 CVE-2022-3626 Out-of-bounds Write vulnerability in Libtiff
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff CWE-787
6.5
2022-10-21 CVE-2022-3627 Out-of-bounds Write vulnerability in Libtiff
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff CWE-787
6.5
2022-08-31 CVE-2022-1354 Out-of-bounds Read vulnerability in multiple products
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function.
local
low complexity
libtiff fedoraproject redhat netapp CWE-125
5.5
2022-08-31 CVE-2022-1355 Stack-based Buffer Overflow vulnerability in multiple products
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function.
local
low complexity
libtiff fedoraproject redhat netapp CWE-121
6.1
2022-08-29 CVE-2022-2953 Out-of-bounds Read vulnerability in multiple products
LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-service via a crafted tiff file.
local
low complexity
libtiff netapp CWE-125
5.5