cbcvebase.

Debian Tiff vulnerabilities

264 known vulnerabilities affecting debian/tiff.

Total CVEs
264
CISA KEV
0
Public exploits
16
Exploited in wild
0
Severity breakdown
CRITICAL16HIGH65MEDIUM128LOW55

Vulnerabilities

Page 14 of 14
CVE-2006-2120P4MEDIUMCVSS 2.1fixed in tiff 3.8.1 (bookworm)2006
CVE-2006-2120 [LOW] CVE-2006-2120: tiff - The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause ... The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read. Scope: local bookworm: resolved (fixed in 3.8.1) bullseye: resolved (fixed in 3.8.1) forky: resolved (fixed in 3.8.1) sid: resolved (fixed in 3.8.
debian
CVE-2025-9165P4LOWCVSS 2.0fixed in tiff 4.7.0-4 (forky)2025
CVE-2025-9165 [LOW] CVE-2025-9165: tiff - A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt... A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. This attack is characterized by high complexity. It is indicated that the exploitability is difficu
debian
CVE-2025-8534P4LOWCVSS 2.0fixed in tiff 4.7.1-1 (forky)2025
CVE-2025-8534 [LOW] CVE-2025-8534: tiff - A vulnerability classified as problematic was found in libtiff 4.6.0. This vulne... A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PS_Lvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appears to be difficult. The e
debian
CVE-2024-13978P4LOWCVSS 2.0fixed in tiff 4.2.0-1+deb11u7 (bullseye)2024
CVE-2024-13978 [LOW] CVE-2024-13978: tiff - A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as proble... A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function t2p_read_tiff_init of the file tools/tiff2pdf.c of the component fax2ps. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation appears t
debian
Debian Tiff vulnerabilities | cvebase