Vulnerabilities > Libtiff > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-01-20 | CVE-2014-9330 | Numeric Errors vulnerability in Libtiff 4.0.3 Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read. | 5.0 |
| 2010-09-28 | CVE-2010-3087 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TIFF image. | 6.8 |
| 2010-07-06 | CVE-2010-2631 | Improper Input Validation vulnerability in Libtiff 3.9.0 LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481. | 4.3 |
| 2010-07-06 | CVE-2010-2630 | Improper Input Validation vulnerability in Libtiff 3.9.0 The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481. | 4.3 |
| 2010-07-02 | CVE-2010-2597 | Improper Input Validation vulnerability in Libtiff 3.9.0/3.9.2 The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler optimization that triggers a divide-by-zero error. | 4.3 |
| 2010-07-02 | CVE-2010-2596 | Improper Input Validation vulnerability in Libtiff 3.9.0/3.9.2 The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF image, related to "downsampled OJPEG input." | 4.3 |
| 2010-07-02 | CVE-2010-2595 | Improper Input Validation vulnerability in Libtiff 3.9.0/3.9.2 The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers an array index error, related to "downsampled OJPEG input." | 4.3 |
| 2010-06-24 | CVE-2010-2443 | Unspecified vulnerability in Libtiff The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function. | 5.0 |
| 2010-06-24 | CVE-2010-2065 | Numeric Errors vulnerability in Libtiff Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow. | 6.8 |
| 2009-07-01 | CVE-2009-2285 | Buffer Errors vulnerability in Libtiff 3.8.2 Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327. | 4.3 |