Vulnerabilities > Libtiff
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2020-18768 | Out-of-bounds Write vulnerability in Libtiff 4.0.10 There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in libtiff 4.0.10, which allows an attacker to cause a denial-of-service through a crafted tiff file. | 5.5 |
| 2023-07-12 | CVE-2023-3618 | Classic Buffer Overflow vulnerability in multiple products A flaw was found in libtiff. | 6.5 |
| 2023-06-30 | CVE-2023-2908 | NULL Pointer Dereference vulnerability in Libtiff A null pointer dereference issue was found in Libtiff's tif_dir.c file. | 5.5 |
| 2023-06-29 | CVE-2023-25433 | Classic Buffer Overflow vulnerability in Libtiff 4.5.0 libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. | 5.5 |
| 2023-06-29 | CVE-2023-26966 | Classic Buffer Overflow vulnerability in Libtiff 4.5.0 libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian. | 5.5 |
| 2023-06-21 | CVE-2023-25435 | Classic Buffer Overflow vulnerability in Libtiff 4.5.0 libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753. | 5.5 |
| 2023-06-19 | CVE-2023-3316 | NULL Pointer Dereference vulnerability in Libtiff A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones. | 6.5 |
| 2023-06-14 | CVE-2023-26965 | Out-of-bounds Write vulnerability in Libtiff loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. | 5.5 |
| 2023-06-14 | CVE-2023-25434 | Classic Buffer Overflow vulnerability in Libtiff 4.5.0 libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215. | 8.8 |
| 2023-05-19 | CVE-2023-30774 | Out-of-bounds Write vulnerability in multiple products A vulnerability was found in the libtiff library. | 5.5 |