Bugs fixes in "tiff"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2023-38289 | libtiff: potential integer overflow in raw2tiff.c | 2023-08-15 |
| CVE | CVE-2023-38288 | libtiff: integer overflow in tiffcp.c | 2023-08-15 |
| CVE | CVE-2023-26966 | libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be b | 2023-08-15 |
| CVE | CVE-2023-26965 | loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. | 2023-08-15 |
| CVE | CVE-2023-25433 | libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop | 2023-08-15 |
| CVE | CVE-2023-3618 | A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in li | 2023-08-15 |
| CVE | CVE-2023-2908 | A null pointer dereference issue was found in Libtiff's tif_dir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tif | 2023-08-15 |
| CVE | CVE-2022-48281 | processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF | 2023-08-15 |
| CVE | CVE-2023-38289 | libtiff: potential integer overflow in raw2tiff.c | 2023-08-15 |
| CVE | CVE-2023-38288 | libtiff: integer overflow in tiffcp.c | 2023-08-15 |
| CVE | CVE-2023-26966 | libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be b | 2023-08-15 |
| CVE | CVE-2023-26965 | loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image. | 2023-08-15 |
| CVE | CVE-2023-25433 | libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop | 2023-08-15 |
| CVE | CVE-2023-3618 | A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in li | 2023-08-15 |
| CVE | CVE-2023-2908 | A null pointer dereference issue was found in Libtiff's tif_dir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tif | 2023-08-15 |
| CVE | CVE-2022-48281 | processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF | 2023-08-15 |
| CVE | CVE-2023-0804 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff fil | 2023-03-07 |
| CVE | CVE-2023-0803 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff fil | 2023-03-07 |
| CVE | CVE-2023-0802 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff fil | 2023-03-07 |
| CVE | CVE-2023-0801 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing | 2023-03-07 |
About
-
Send Feedback to @ubuntu_updates
