Debian Tiff vulnerabilities
264 known vulnerabilities affecting debian/tiff.
Total CVEs
264
CISA KEV
0
Public exploits
16
Exploited in wild
0
Severity breakdown
CRITICAL16HIGH65MEDIUM128LOW55
Vulnerabilities
Page 6 of 14
CVE-2016-9453P4HIGHCVSS 7.8fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-9453 [HIGH] CVE-2016-9453: tiff - The t2p_readwrite_pdf_image_tile function in LibTIFF allows remote attackers to ...
The t2p_readwrite_pdf_image_tile function in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a JPEG file with a TIFFTAG_JPEGTABLES of length one.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixe
debian
CVE-2016-10270P4HIGHCVSS 7.8fixed in tiff 4.0.7-2 (bookworm)2016
CVE-2016-10270 [HIGH] CVE-2016-10270: tiff - LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based b...
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 8" and libtiff/tif_read.c:523:22.
Scope: local
bookworm: resolved (fixed in 4.0.7-2)
bullseye: resolved (fixed in 4.0.7-2)
forky: resolved (fixed in 4.0.7-2)
sid: resolved (fixed in
debian
CVE-2016-10268P4LOWCVSS 7.8fixed in tiff 4.0.7-2 (bookworm)2016
CVE-2016-10268 [HIGH] CVE-2016-10268: tiff - tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of ser...
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23.
Scope: local
bookworm: resolved (fixed in 4.0.7-2)
bullseye: resolved (fixed in 4.0.7-2)
forky: resolv
debian
CVE-2016-5318P4MEDIUMCVSS 6.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-5318 [MEDIUM] CVE-2016-5318: tiff - Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and ...
Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted tiff.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixed in 4.0.6-3)
trixie: resolved (fixed in 4.0.6-3)
debian
CVE-2016-5323P4LOWCVSS 7.5fixed in tiff 4.0.6-2 (bookworm)2016
CVE-2016-5323 [HIGH] CVE-2016-5323: tiff - The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers t...
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
Scope: local
bookworm: resolved (fixed in 4.0.6-2)
bullseye: resolved (fixed in 4.0.6-2)
forky: resolved (fixed in 4.0.6-2)
sid: resolved (fixed in 4.0.6-2)
trixie: resolved (fixed in 4.0.6-2)
debian
CVE-2006-2193P4MEDIUMCVSS 7.5fixed in tiff 3.8.2-4 (bookworm)2006
CVE-2006-2193 [HIGH] CVE-2006-2193: tiff - Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in libtiff 3.8....
Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in libtiff 3.8.2 and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TIFF file with a DocumentName tag that contains UTF-8 characters, which triggers the overflow when a character is sign extended to an integer that produces more digits than expected i
debian
CVE-2016-3631P4HIGHCVSS 7.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-3631 [HIGH] CVE-2016-3631: tiff - The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0....
The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0.6 and earlier allow remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the bytecounts[] array variable.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixed in 4.
debian
CVE-2016-3634P4HIGHCVSS 7.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-3634 [HIGH] CVE-2016-3634: tiff - The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 ...
The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixed in 4.0.6-3)
trixie:
debian
CVE-2010-3087P4MEDIUMCVSS 6.8fixed in tiff 3.9.4-5 (bookworm)2010
CVE-2010-3087 [MEDIUM] CVE-2010-3087: tiff - LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to caus...
LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TIFF image.
Scope: local
bookworm: resolved (fixed in 3.9.4-5)
bullseye: resolved (fixed in 3.9.4-5)
forky: resolved (fixed in 3.9.4-5)
sid: resolved (fixed in 3.9.4-5)
trixie: resolved (fixed in 3.9.
debian
CVE-2014-8127P4LOWCVSS 6.5fixed in tiff 4.0.6-3 (bookworm)2014
CVE-2014-8127 [MEDIUM] CVE-2014-8127: tiff - LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bound...
LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted TIFF image to the (1) checkInkNamesString function in tif_dir.c in the thumbnail tool, (2) compresscontig function in tiff2bw.c in the tiff2bw tool, (3) putcontig8bitCIELab function in tif_getimage.c in the tiff2rgba tool, LZWPreDecode function in tif_lzw.c i
debian
CVE-2016-5652P4HIGHCVSS 7.0fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-5652 [HIGH] CVE-2016-5652: tiff - An exploitable heap-based buffer overflow exists in the handling of TIFF images ...
An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6
debian
CVE-2010-2067P4MEDIUMCVSS 6.8fixed in tiff 3.9.4-1 (bookworm)2010
CVE-2010-2067 [MEDIUM] CVE-2010-2067: tiff - Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirr...
Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file.
Scope: local
bookworm: resolved (fixed in 3.9.4-1)
bullseye: resolved (fixed in 3.9.4-1)
forky: res
debian
CVE-2016-3633P4HIGHCVSS 7.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-3633 [HIGH] CVE-2016-3633: tiff - The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier allows re...
The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the src variable.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixed in 4.0.6-3)
trixie: resolved (fixed in 4.0
debian
CVE-2015-8784P4MEDIUMCVSS 6.5fixed in tiff 4.0.6-1 (bookworm)2015
CVE-2015-8784 [MEDIUM] CVE-2015-8784: tiff - The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to caus...
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.
Scope: local
bookworm: resolved (fixed in 4.0.6-1)
bullseye: resolved (fixed in 4.0.6-1)
forky: resolved (fixed in 4.0.6-1)
sid: resolved (fixed in 4.0.6-1)
trixie: resolved (fixed in 4.0.
debian
CVE-2023-41175P4MEDIUMCVSS 6.5fixed in tiff 4.5.0-6+deb12u1 (bookworm)2023
CVE-2023-41175 [MEDIUM] CVE-2023-41175: tiff - A vulnerability was found in libtiff due to multiple potential integer overflows...
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
Scope: local
bookworm: resolved (fixed in 4.5.0-6+deb12u1)
bullseye: resolved (fixed in 4.2.0-1+deb11
debian
CVE-2010-2065P4MEDIUMCVSS 6.8fixed in tiff 3.9.4-1 (bookworm)2010
CVE-2010-2065 [MEDIUM] CVE-2010-2065: tiff - Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote ...
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.
Scope: local
bookworm: resolved (fixed in 3.9.4-1)
bullseye: resolved (fixed in 3.9.4-1)
forky: resolved (fixed in 3.9.4-1)
sid: resolved (f
debian
CVE-2017-12944P4HIGHCVSS 7.5fixed in tiff 4.0.8-6 (bookworm)2017
CVE-2017-12944 [HIGH] CVE-2017-12944: tiff - The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles mem...
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote attackers to cause a denial of service (allocation failure and application crash) in the TIFFFetchStripThing function in tif_dirread.c during a tiff2pdf invocation.
Scope: local
bookworm: resolved (fixed in 4.0.8-6)
bullseye: resolved (fix
debian
CVE-2014-8128P4MEDIUMCVSS 6.5fixed in tiff 4.0.3-12.3 (bookworm)2014
CVE-2014-8128 [MEDIUM] CVE-2014-8128: tiff - LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 ...
LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.
Scope: local
bookworm: resolved (fixed in 4.0.3-12.3)
bullseye: resolved (fixed in 4.0.3-12.3)
forky: resolved (fixed in 4.0.3-12.3)
sid: resolved (fixed in 4.0.3-12.3)
t
debian
CVE-2016-5319P4MEDIUMCVSS 6.5fixed in tiff 4.0.6-3 (bookworm)2016
CVE-2016-5319 [MEDIUM] CVE-2016-5319: tiff - Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier allows...
Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file.
Scope: local
bookworm: resolved (fixed in 4.0.6-3)
bullseye: resolved (fixed in 4.0.6-3)
forky: resolved (fixed in 4.0.6-3)
sid: resolved (fixed in 4.0.6-3)
trixie: resolved (fixed in 4.0.6-3)
debian
CVE-2013-4244P4MEDIUMCVSS 6.8fixed in tiff 4.0.3-3 (bookworm)2013
CVE-2013-4244 [MEDIUM] CVE-2013-4244: tiff - The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows co...
The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.
Scope: local
bookworm: resolved (fixed in 4.0.3-3)
bullseye: resolved (fixed in 4.0.3-3)
forky: resolved (fixed in 4.0.3-3)
sid: resolved (fixed
debian