Vulnerabilities > Libtiff > Libtiff > 4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-31 | CVE-2022-1355 | Stack-based Buffer Overflow vulnerability in multiple products A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. | 6.1 |
| 2022-08-29 | CVE-2022-2953 | Out-of-bounds Read vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-service via a crafted tiff file. | 5.5 |
| 2022-08-17 | CVE-2022-2867 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. | 5.5 |
| 2022-08-17 | CVE-2022-2868 | Improper Validation of Specified Quantity in Input vulnerability in multiple products libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop. | 5.5 |
| 2022-08-17 | CVE-2022-2869 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. | 5.5 |
| 2022-03-11 | CVE-2022-0908 | NULL Pointer Dereference vulnerability in multiple products Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file. | 5.5 |
| 2022-03-10 | CVE-2022-0891 | Out-of-bounds Write vulnerability in multiple products A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact | 7.1 |
| 2022-02-11 | CVE-2022-0561 | NULL Pointer Dereference vulnerability in multiple products Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_dirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. | 5.5 |
| 2021-03-09 | CVE-2020-35524 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. | 7.8 |
| 2021-03-09 | CVE-2020-35523 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow flaw was found in libtiff that exists in the tif_getimage.c file. | 7.8 |