Page 36 of 248 results (0.010 seconds)

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2016-3991 – libtiff: out-of-bounds write in loadImage() function

https://notcve.org/view.php?id=CVE-2016-3991

Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image with zero tiles. Desbordamiento de búfer basado en memoria dinámica en la función loadImage en la herramienta tiffcrop en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (escritura fuera de límites) o ejecutar código arbitrario a través de una imagen TIFF manipulada con cero azulejos. • http://bugzilla.maptools.org/show_bug.cgi?id=2543 http://lists.opensuse.org/opensuse-updates/2016-09/msg00039.html http://rhn.redhat.com/errata/RHSA-2016-1546.html http://rhn.redhat.com/errata/RHSA-2016-1547.html http://www.debian.org/security/2017/dsa-3762 http://www.openwall.com/lists/oss-security/2016/04/12/3 http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http:&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2016-3632 – libtiff: out-of-bounds write in _TIFFVGetField function

https://notcve.org/view.php?id=CVE-2016-3632

The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image. La función _TIFFVGetField en tif_dirinfo.c en LibTIFF 4.0.6 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (escritura fuera de límites) o ejecutar código arbitrario a través de una imagen TIFF manipulada. • http://bugzilla.maptools.org/show_bug.cgi?id=2549 http://rhn.redhat.com/errata/RHSA-2016-1546.html http://rhn.redhat.com/errata/RHSA-2016-1547.html http://www.openwall.com/lists/oss-security/2016/04/08/9 http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http://www.securityfocus.com/bid/85953 http://www.securityfocus.com/bid/85960 https://bugzilla.redhat.com/show_bug&# • CWE-787: Out-of-bounds Write •

CVSS: 6.2EPSS: 1%CPEs: 2EXPL: 0

CVE-2016-3186 – libtiff: buffer overflow in gif2tiff

https://notcve.org/view.php?id=CVE-2016-3186

Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file. Desbordamiento de buffer en la función readextension en gif2tiff.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un archivo GIF manipulado. • http://lists.opensuse.org/opensuse-updates/2016-04/msg00064.html http://lists.opensuse.org/opensuse-updates/2016-04/msg00075.html http://www.securitytracker.com/id/1035442 https://access.redhat.com/errata/RHSA-2019:2053 https://bugzilla.redhat.com/show_bug.cgi?id=1319503 https://security.gentoo.org/glsa/201701-16 https://usn.ubuntu.com/3606-1 https://access.redhat.com/security/cve/CVE-2016-3186 https://bugzilla.redhat.com/show_bug.cgi?id=1319666 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121: Stack-based Buffer Overflow •

CVSS: 5.5EPSS: 2%CPEs: 1EXPL: 0

CVE-2015-8665 – libtiff: Out-of-bounds read in tif_getimage.c

https://notcve.org/view.php?id=CVE-2015-8665

tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image. tif_getimage.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de rangos) a través de la etiqueta SamplesPerPixel en una imagen TIFF. • http://rhn.redhat.com/errata/RHSA-2016-1546.html http://rhn.redhat.com/errata/RHSA-2016-1547.html http://www.debian.org/security/2016/dsa-3467 http://www.openwall.com/lists/oss-security/2015/12/24/2 http://www.openwall.com/lists/oss-security/2015/12/24/4 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •

CVSS: 5.5EPSS: 3%CPEs: 3EXPL: 0

CVE-2015-8683 – libtiff: Out-of-bounds when reading CIE Lab image format files

https://notcve.org/view.php?id=CVE-2015-8683

The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a packed TIFF image. La función putcontig8bitCIELab en tif_getimage.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de rango) a través de una imagen TIFF comprimida. • http://rhn.redhat.com/errata/RHSA-2016-1546.html http://rhn.redhat.com/errata/RHSA-2016-1547.html http://www.debian.org/security/2016/dsa-3467 http://www.openwall.com/lists/oss-security/2015/12/25/1 http://www.openwall.com/lists/oss-security/2015/12/26/1 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •