Vulnerabilities > Libtiff

DATE CVE VULNERABILITY TITLE RISK
2016-10-03 CVE-2016-3620 Out-of-bounds Read vulnerability in Libtiff
The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c zip" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
network
low complexity
libtiff CWE-125
7.5
2016-10-03 CVE-2016-3619 Out-of-bounds Read vulnerability in Libtiff 4.0.6
The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c none" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
network
low complexity
libtiff CWE-125
6.5
2016-09-21 CVE-2016-3991 Out-of-bounds Write vulnerability in multiple products
Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image with zero tiles.
local
low complexity
oracle libtiff CWE-787
7.8
2016-09-21 CVE-2016-3990 Out-of-bounds Write vulnerability in multiple products
Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image to tiffcp.
local
low complexity
libtiff oracle CWE-787
7.8
2016-09-21 CVE-2016-3945 Integer Overflow or Wraparound vulnerability in multiple products
Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile functions in the tiff2rgba tool in LibTIFF 4.0.6 and earlier, when -b mode is enabled, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image, which triggers an out-of-bounds write.
local
low complexity
libtiff oracle CWE-190
7.8
2016-09-21 CVE-2016-3632 Out-of-bounds Write vulnerability in multiple products
The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image.
local
low complexity
libtiff oracle CWE-787
7.8
2016-04-19 CVE-2016-3186 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file.
local
low complexity
opensuse libtiff CWE-119
6.2
2016-04-13 CVE-2015-8784 Out-of-bounds Write vulnerability in multiple products
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.
network
low complexity
libtiff debian CWE-787
6.5
2016-04-13 CVE-2015-8683 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a packed TIFF image.
local
low complexity
libtiff debian CWE-119
5.5
2016-04-13 CVE-2015-8665 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libtiff 4.0.6
tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image.
local
low complexity
libtiff CWE-119
5.5