CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10371 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2016-10371
10 May 2017 — The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file. La función TIFFWriteDirectoryTagCheckedRational en tif_dirwrite.c en LibTIFF 4.0.6 permite a atacantes remotos provocar una denegación de servicio (fallo de aserción y salida de la aplicación) a través de un archivo TIFF manipulado It was discovered that LibTIFF incorrectly handled certain malformed images.... • http://bugzilla.maptools.org/show_bug.cgi?id=2535 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7592 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7592
09 Apr 2017 — The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. La función putagreytile en tif_getimage.c en LibTIFF 4.0.7 tiene un problema de comportamiento de desplazamiento a la izquierda no definido, lo que podrían permitir a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente ... • http://bugzilla.maptools.org/show_bug.cgi?id=2658 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7593 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7593
09 Apr 2017 — tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote attackers to obtain sensitive information from process memory via a crafted image. tif_read.c en LibTIFF 4.0.7 no asegura que tif_rawdata se inicialice adecuadamente, lo que podrían permitir a atacantes remotos obtener información sensible de la memoria del proceso a través de una imagen manipulada. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated ... • http://bugzilla.maptools.org/show_bug.cgi?id=2651 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7594 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7594
09 Apr 2017 — The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (memory leak) via a crafted image. La función OJPEGReadHeaderInfoSecTablesDcTable en tif_ojpeg.c en LibTIFF 4.0.7 permite a atacantes remotos provocar una denegación de servicio (fuga de memoria) a través de una imagen manipulada. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially cr... • http://bugzilla.maptools.org/show_bug.cgi?id=2659 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7595 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7595
09 Apr 2017 — The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image. La función JPEGSetupEncode en tiff_jpeg.c en LibTIFF 4.0.7 permite a atacantes remotos provocar una denegación de servicio (error de división por cero y caída de la aplicación) a través de una imagen manipulada. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked ... • http://www.debian.org/security/2017/dsa-3844 • CWE-369: Divide By Zero •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7596 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7596
09 Apr 2017 — LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. LibTIFF 4.0.7 tiene un problema de comportamiento "fuera de rango de valores representables del tipo flotante" no definido, lo que podrían permitir a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente tener otro impac... • http://www.debian.org/security/2017/dsa-3844 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7597 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7597
09 Apr 2017 — tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. tif_dirread.c en LibTIFF 4.0.7 tiene un problema de comportamiento "fuera de rango de valores representables del tipo flotante" no definido, lo que podrían permitir a atacantes remotos provocar una denegación de servicio (caída de la aplicació... • http://www.debian.org/security/2017/dsa-3844 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7598 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7598
09 Apr 2017 — tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image. tif_dirread.c en LibTIFF 4.0.7 podrían permitir a atacantes remotos provocar una denegación de servicio (error de división por cero y caída de la aplicación) a través de una imagen manipulada. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a re... • http://www.debian.org/security/2017/dsa-3844 • CWE-369: Divide By Zero •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7599 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7599
09 Apr 2017 — LibTIFF 4.0.7 has an "outside the range of representable values of type short" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. LibTIFF 4.0.7 tiene un problema de comportamiento "fuera de rango de valores representables de tipo corto" no definido, lo que podrían permitir a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente tener otro impacto n... • http://www.debian.org/security/2017/dsa-3844 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7600 – Ubuntu Security Notice USN-3602-1
https://notcve.org/view.php?id=CVE-2017-7600
09 Apr 2017 — LibTIFF 4.0.7 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image. It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly e... • http://www.debian.org/security/2017/dsa-3844 • CWE-20: Improper Input Validation •