CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3625 – Gentoo Linux Security Advisory 201701-16
https://notcve.org/view.php?id=CVE-2016-3625
03 Oct 2016 — tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image. tif_read.c en la herramienta tiff2bw en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de una imagen TIFF manipulada. Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. Versions less than 4.0.7 are affe... • http://bugzilla.maptools.org/show_bug.cgi?id=2566 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3658 – Gentoo Linux Security Advisory 201701-16
https://notcve.org/view.php?id=CVE-2016-3658
03 Oct 2016 — The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable. La función TIFFWriteDirectoryTagLongLong8Array en tif_dirwrite.c en la herramienta tiffset en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de vectores que involucran a la variable ma. It was ... • http://bugzilla.maptools.org/show_bug.cgi?id=2546 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 2CVE-2016-3620 – Gentoo Linux Security Advisory 201701-16
https://notcve.org/view.php?id=CVE-2016-3620
03 Oct 2016 — The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c zip" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image. La función ZIPEncode en tif_zip.c en la herramienta bmp2tiff en LibTIFF 4.0.6 y en versiones anteriores, cuando la opción "-c zip" es utilizada, permite a atacantes remotos provocar una denegación de servicio (sobre lectura de búfer) a través de una imagen BMP manipulada. Multiple vulnerabilit... • http://bugzilla.maptools.org/show_bug.cgi?id=2570 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-3990 – libtiff: out-of-bounds write in horizontalDifference8()
https://notcve.org/view.php?id=CVE-2016-3990
02 Aug 2016 — Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image to tiffcp. Desbordamiento de búfer basado en memoria dinámica en la función horizontalDifference8 en tif_pixarlog.c en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (caída) o ejecutar código arbitrario a través de una imagen TIFF man... • http://bugzilla.maptools.org/show_bug.cgi?id=2544 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-3991 – libtiff: out-of-bounds write in loadImage() function
https://notcve.org/view.php?id=CVE-2016-3991
02 Aug 2016 — Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image with zero tiles. Desbordamiento de búfer basado en memoria dinámica en la función loadImage en la herramienta tiffcrop en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (escritura fuera de límites) o ejecutar código arbitrario a ... • http://bugzilla.maptools.org/show_bug.cgi?id=2543 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-3945 – libtiff: out-of-bounds write in the tiff2rgba tool
https://notcve.org/view.php?id=CVE-2016-3945
02 Aug 2016 — Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile functions in the tiff2rgba tool in LibTIFF 4.0.6 and earlier, when -b mode is enabled, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image, which triggers an out-of-bounds write. Múltiples desbordamientos de entero en las funciones (1) cvt_by_strip y (2) cvt_by_tile en la herramienta tiff2rgba en LibTIFF 4.0.6 y versiones anteriores, cuando está habilitado el modo -b, permiten a ... • http://bugzilla.maptools.org/show_bug.cgi?id=2545 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-3632 – libtiff: out-of-bounds write in _TIFFVGetField function
https://notcve.org/view.php?id=CVE-2016-3632
02 Aug 2016 — The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image. La función _TIFFVGetField en tif_dirinfo.c en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (escritura fuera de límites) o ejecutar código arbitrario a través de una imagen TIFF manipulada. The libtiff packages contain a library of functions for manipulati... • http://bugzilla.maptools.org/show_bug.cgi?id=2549 • CWE-787: Out-of-bounds Write •
CVSS: 6.2EPSS: 0%CPEs: 2EXPL: 0CVE-2016-3186 – libtiff: buffer overflow in gif2tiff
https://notcve.org/view.php?id=CVE-2016-3186
19 Apr 2016 — Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file. Desbordamiento de buffer en la función readextension en gif2tiff.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un archivo GIF manipulado. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into open... • http://lists.opensuse.org/opensuse-updates/2016-04/msg00064.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121: Stack-based Buffer Overflow •
CVSS: 6.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-8784 – libtiff: out-of-bound write in NeXTDecode()
https://notcve.org/view.php?id=CVE-2015-8784
08 Feb 2016 — The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif. La función NeXTDecode en tif_next.c en LibTIFF permite a atacantes remotos provocar una denegación de servicio (escritura fuera de rango) a través de una imagen TIFF manipulada, según lo demostrado por libtiff5.tif. The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix... • http://bugzilla.maptools.org/show_bug.cgi?id=2508 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-8665 – libtiff: Out-of-bounds read in tif_getimage.c
https://notcve.org/view.php?id=CVE-2015-8665
08 Feb 2016 — tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image. tif_getimage.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de rangos) a través de la etiqueta SamplesPerPixel en una imagen TIFF. The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Security Fix: Multiple flaws have been discovered in libtiff. A remote attacke... • http://rhn.redhat.com/errata/RHSA-2016-1546.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •