
CVE-2015-8668 – libtiff: OOB read in bmp2tiff
https://notcve.org/view.php?id=CVE-2015-8668
28 Dec 2015 — Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image. Desbordamiento de buffer basado en memoria dinámica en la función PackBitsPreEncode en tif_packbits.c en bmp2tiff en libtiff 4.0.6 y versiones anteriores permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio a través de un campo width... • http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •

CVE-2014-9655 – libtiff: use of uninitialized memory in putcontig8bitYCbCr21tile and NeXTDecode
https://notcve.org/view.php?id=CVE-2014-9655
30 Mar 2015 — The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff-cvs-1.tif and libtiff-cvs-2.tif. La función (1) putcontig8bitYCbCr21tile en tif_getimage.c o la función (2) NeXTDecode en tif_next.c in LibTIFF permite a atacantes remotos provocar una denegación de servicio (acceso a memoria no inicializada) a través de una image... • http://openwall.com/lists/oss-security/2015/02/07/5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-8128 – Gentoo Linux Security Advisory 201701-16
https://notcve.org/view.php?id=CVE-2014-8128
30 Mar 2015 — LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image. LibTIFF versiones anteriores a 4.0.4, como es usado en Apple iOS versiones anteriores a 8.4 y OS X versiones anteriores a 10.10.4 y otros productos, permite a atacantes remotos causar una denegación de servicio (escritura fuera de límites) por medio de una imagen TIFF diseñada. William Robinet discovered that ... • http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html • CWE-787: Out-of-bounds Write •

CVE-2015-1547 – libtiff: use of uninitialized memory in NeXTDecode
https://notcve.org/view.php?id=CVE-2015-1547
30 Mar 2015 — The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif. La función NeXTDecode en tif_next.c en LibTIFF permite a atacantes remotos provocar una denegación de servicio (acceso a memoria no inicializada) a través de una imagen TIFF manipulada, según lo demostrado por libtiff5.tif. The libtiff packages contain a library of functions for manipulating Tagged Image File Format fil... • http://openwall.com/lists/oss-security/2015/01/24/16 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2008-2327 – libtiff: use of uninitialized memory in LZW decoder
https://notcve.org/view.php?id=CVE-2008-2327
27 Aug 2008 — Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code. Múltiples desbordamientos de búfer en las funciones (1) LZWDecode, (2) LZWDecodeCompat y (3) LZWDecodeVector en el archivo tif_lzw.c en el decodificador LZW en LibTIFF versión 3.8.2 y anteriores, permite a los... • http://bugs.gentoo.org/show_bug.cgi?id=234080 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-3459 – Apple iPhone MobileSafari LibTIFF - 'browser' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-3459
03 Aug 2006 — Multiple stack-based buffer overflows in the TIFF library (libtiff) before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, including a large tdir_count value in the TIFFFetchShortPair function in tif_dirread.c. Múltiples desbordamientos de búfer basados en pila en la librería TIFF (libtiff)anterior a 3.8.2 permiten a atacantes locales o remotos (dependiendo del contexto) provocar una de... • https://www.exploit-db.com/exploits/16862 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-3460 – Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)
https://notcve.org/view.php?id=CVE-2006-3460
03 Aug 2006 — Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size (TiffScanLineSize). Desbordamiento de búfer basado en montón en el decodificador JPEG de la librería TIFF (libtiff) anterior a 3.8.2 permite a atacantes locales o remotos (dependiendo del contexto) provocar una denegación de servicio y posiblemente ejecuta... • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-3461 – Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)
https://notcve.org/view.php?id=CVE-2006-3461
03 Aug 2006 — Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors. Desbordamiento de búfer basado en montón en el decodificador PixarLog en la biblioteca TIFF (libtiff) versiones anteriores a 3.8.2 podría permitir a atacantes locales o remotos dependientes del contexto ejecutar código de su elección mediante vectores desconocidos. • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P •

CVE-2006-3462 – Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)
https://notcve.org/view.php?id=CVE-2006-3462
03 Aug 2006 — Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images. Desbordamiento de búfer basado en pila en el descodificador NeXT RLE en la librería TIFF (libtiff) anterior a 3.8.2 podría permitir a atacantes dependientes de contexto ejecutar código de su elección mediante vectores no especificados que implican la descodificación de imágenes RLE grandes. • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-3463 – Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)
https://notcve.org/view.php?id=CVE-2006-3463
03 Aug 2006 — The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value, which triggers an infinite loop. La función EstimateStripByteCounts en TIFF library (libtiff) versiones anteriores a 3.8.2 utiliza un valor corto sin signo de 16-bit cuando itera sobre un valor sin signo de 32-bit, que permite a atacantes locales o remotos depe... • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •