cbcvebase.

Debian Tiff vulnerabilities

264 known vulnerabilities affecting debian/tiff.

Total CVEs
264
CISA KEV
0
Public exploits
16
Exploited in wild
0
Severity breakdown
CRITICAL16HIGH65MEDIUM128LOW55

Vulnerabilities

Page 5 of 14
CVE-2006-3462P3HIGHCVSS 7.5fixed in tiff 3.8.2-6 (bookworm)2006
CVE-2006-3462 [HIGH] CVE-2006-3462: tiff - Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff)... Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images. Scope: local bookworm: resolved (fixed in 3.8.2-6) bullseye: resolved (fixed in 3.8.2-6) forky: resolved (fixed in 3.8.2-6) sid: resolved (fixed in 3.8.2-6)
debian
CVE-2015-7554P3CRITICALCVSS 9.8fixed in tiff 4.0.7-7 (bookworm)2015
CVE-2015-7554 [CRITICAL] CVE-2015-7554: tiff - The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attackers to ca... The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image. Scope: local bookworm: resolved (fixed in 4.0.7-7) bullseye: resolved (fixed in 4.0.7-7) forky: resolved (fixed in 4.0.7-7) sid: r
debian
CVE-2013-4232P3MEDIUMCVSS 6.8fixed in tiff 4.0.3-2 (bookworm)2013
CVE-2013-4232 [MEDIUM] CVE-2013-4232: tiff - Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/ti... Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF image. Scope: local bookworm: resolved (fixed in 4.0.3-2) bullseye: resolved (fixed in 4.0.3-2) forky: resolved (fixed in 4.0.3-2) sid: resolved (fixe
debian
CVE-2016-10271P3HIGHCVSS 7.8fixed in tiff 4.0.7-2 (bookworm)2016
CVE-2016-10271 [HIGH] CVE-2016-10271: tiff - tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of s... tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13. Scope: local bookworm: resolved (fixed in 4.0.7-2) bullseye: resolved (fixed in 4.0.7-2) forky: resolved (f
debian
CVE-2012-3401P3MEDIUMCVSS 6.8fixed in tiff 4.0.2-2 (bookworm)2012
CVE-2012-3401 [MEDIUM] CVE-2012-3401: tiff - The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 ... The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers a heap-based buffer overflow. Scope:
debian
CVE-2020-19131P3HIGHCVSS 7.5fixed in tiff 4.0.10+git190814-1 (bookworm)2020
CVE-2020-19131 [HIGH] CVE-2020-19131: tiff - Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service... Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the component "tiffcrop". Scope: local bookworm: resolved (fixed in 4.0.10+git190814-1) bullseye: resolved (fixed in 4.0.10+git190814-1) forky: resolved (fixed in 4.0.10+git190814-1) sid: resolved (fixed in 4.0.10+git190814-1) trixie: resolved (fixed in
debian
CVE-2015-8870P3HIGHCVSS 7.4fixed in tiff 4.0.3-12 (bookworm)2015
CVE-2015-8870 [HIGH] CVE-2015-8870: tiff - Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attac... Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service (heap-based buffer over-read), or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file. Scope: local bookworm: resolved (fixed in 4.0.3-12) bullseye: resolved (fixed in 4.0.3-12) for
debian
CVE-2025-61144P3LOWCVSS 7.3fixed in tiff 4.7.1-1 (forky)2025
CVE-2025-61144 [HIGH] CVE-2025-61144: tiff - libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSepa... libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 4.7.1-1) sid: resolved (fixed in 4.7.1-1) trixie: open
debian
CVE-2018-17100P3LOWCVSS 8.8fixed in tiff 4.0.9+git181026-1 (bookworm)2018
CVE-2018-17100 [HIGH] CVE-2018-17100: tiff - An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_... An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_ms in tools/ppm2tiff.c, which can cause a denial of service (crash) or possibly have unspecified other impact via a crafted image file. Scope: local bookworm: resolved (fixed in 4.0.9+git181026-1) bullseye: resolved (fixed in 4.0.9+git181026-1) forky: resolved (fixed in 4.0.9+git181026-1) s
debian
CVE-2006-3460P3HIGHCVSS 7.5fixed in tiff 3.8.2-6 (bookworm)2006
CVE-2006-3460 [HIGH] CVE-2006-3460: tiff - Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) bef... Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size (TiffScanLineSize). Scope: local bookworm: resolved (fixed in 3.8.2-6) bullseye: resolved (fixed in 3.8.2-6) forky: r
debian
CVE-2012-2113P3MEDIUMCVSS 6.8fixed in tiff 4.0.2-1 (bookworm)2012
CVE-2012-2113 [MEDIUM] CVE-2012-2113: tiff - Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow remote atta... Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow. Scope: local bookworm: resolved (fixed in 4.0.2-1) bullseye: resolved (fixed in 4.0.2-1) forky: resolved (fixed in 4.0.2-1) sid: r
debian
CVE-2016-3620P3LOWCVSS 7.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-3620 [HIGH] CVE-2016-3620: tiff - The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and ea... The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c zip" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image. Scope: local bookworm: resolved (fixed in 4.0.6-3) bullseye: resolved (fixed in 4.0.6-3) forky: resolved (fixed in 4.0.6-3) sid: resolved (fixed in 4.0.6-3
debian
CVE-2016-10269P3HIGHCVSS 7.8fixed in tiff 4.0.7-2 (bookworm)2016
CVE-2016-10269 [HIGH] CVE-2016-10269: tiff - LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, ... LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 512" and libtiff/tif_unix.c:340:2. Scope: local bookworm: resolved
debian
CVE-2016-10094P3HIGHCVSS 7.8fixed in tiff 4.0.7-4 (bookworm)2016
CVE-2016-10094 [HIGH] CVE-2016-10094: tiff - Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.... Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image. Scope: local bookworm: resolved (fixed in 4.0.7-4) bullseye: resolved (fixed in 4.0.7-4) forky: resolved (fixed in 4.0.7-4) sid: resolved (fixed in 4.0.7-4) trixie: resolved (fixed in 4.0.7-4)
debian
CVE-2016-10272P3HIGHCVSS 7.8fixed in tiff 4.0.7-2 (bookworm)2016
CVE-2016-10272 [HIGH] CVE-2016-10272: tiff - LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based b... LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to "WRITE of size 2048" and libtiff/tif_next.c:64:9. Scope: local bookworm: resolved (fixed in 4.0.7-2) bullseye: resolved (fixed in 4.0.7-2) forky: resolved (fixed in 4.0.7-2) sid: resolved (fixed i
debian
CVE-2012-5581P3MEDIUMCVSS 6.8fixed in tiff 4.0.2-1 (bookworm)2012
CVE-2012-5581 [MEDIUM] CVE-2012-5581: tiff - Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote a... Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image. Scope: local bookworm: resolved (fixed in 4.0.2-1) bullseye: resolved (fixed in 4.0.2-1) forky: resolved (fixed in 4.0.2-1) sid: resolved (fixed in 4.0.2-1) trixie:
debian
CVE-2008-2327P3MEDIUMCVSS 6.8fixed in tiff 3.8.2-11 (bookworm)2008
CVE-2008-2327 [MEDIUM] CVE-2008-2327: tiff - Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZ... Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code. Scope: local bookworm: resolved (fixed in 3.8.2-11) bullseye: resolv
debian
CVE-2006-3465P3HIGHCVSS 7.5fixed in tiff 3.8.2-6 (bookworm)2006
CVE-2006-3465 [HIGH] CVE-2006-3465: tiff - Unspecified vulnerability in the custom tag support for the TIFF library (libtif... Unspecified vulnerability in the custom tag support for the TIFF library (libtiff) before 3.8.2 allows remote attackers to cause a denial of service (instability or crash) and execute arbitrary code via unknown vectors. Scope: local bookworm: resolved (fixed in 3.8.2-6) bullseye: resolved (fixed in 3.8.2-6) forky: resolved (fixed in 3.8.2-6) sid: resolved (fixed in 3.8.2
debian
CVE-2012-4447P4MEDIUMCVSS 6.8fixed in tiff 4.0.2-4 (bookworm)2012
CVE-2012-4447 [MEDIUM] CVE-2012-4447: tiff - Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remo... Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format. Scope: local bookworm: resolved (fixed in 4.0.2-4) bullseye: resolved (fixed in 4.0.2-4) forky: resolved (fixed in 4.0.2-4) sid:
debian
CVE-2016-3658P4LOWCVSS 7.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-3658 [HIGH] CVE-2016-3658: tiff - The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffse... The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable. Scope: local bookworm: resolved (fixed in 4.0.6-3) bullseye: resolved (fixed in 4.0.6-3) forky: resolved (fixed in 4.0.6-3) sid: resolved (fixed
debian
Debian Tiff vulnerabilities | cvebase