Vulnerabilities > Libtiff > Libtiff > 3.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-02-01 | CVE-2015-8781 | Out-of-bounds Write vulnerability in multiple products tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782. | 4.3 |
2016-01-08 | CVE-2015-8668 | Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image. | 9.8 |
2010-06-24 | CVE-2010-2443 | Unspecified vulnerability in Libtiff The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function. | 5.0 |
2010-06-24 | CVE-2010-2065 | Numeric Errors vulnerability in Libtiff Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow. | 6.8 |
2008-08-27 | CVE-2008-2327 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Libtiff Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code. | 6.8 |
2006-08-03 | CVE-2006-3465 | Denial of Service vulnerability in LibTIFF Library Anonymous Field Merging Unspecified vulnerability in the custom tag support for the TIFF library (libtiff) before 3.8.2 allows remote attackers to cause a denial of service (instability or crash) and execute arbitrary code via unknown vectors. | 7.5 |
2006-08-03 | CVE-2006-3464 | Numeric Errors vulnerability in Libtiff TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving "unchecked arithmetic operations". | 7.5 |
2006-08-03 | CVE-2006-3463 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Libtiff The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value, which triggers an infinite loop. | 7.8 |
2006-08-03 | CVE-2006-3462 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Libtiff Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images. | 7.5 |
2006-08-03 | CVE-2006-3461 | Multiple Security vulnerability in Apple Mac OS X Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors. | 7.5 |