rpm package
suse/tiff&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5
pkg:rpm/suse/tiff&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
Vulnerabilities (68)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-17546 | — | < 4.0.9-44.45.1 | 4.0.9-44.45.1 | Oct 14, 2019 | tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition. | ||
| CVE-2019-14973 | — | < 4.0.9-44.42.1 | 4.0.9-44.42.1 | Aug 14, 2019 | _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash. | ||
| CVE-2019-7663 | — | < 4.0.9-44.42.1 | 4.0.9-44.42.1 | Feb 9, 2019 | An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a c | ||
| CVE-2019-6128 | — | < 4.0.9-44.42.1 | 4.0.9-44.42.1 | Jan 11, 2019 | The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb. | ||
| CVE-2018-17000 | — | < 4.0.9-44.42.1 | 4.0.9-44.42.1 | Sep 13, 2018 | A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c (called from TIFFWriteDirectoryTagTransferfunction) in LibTIFF 4.0.9 allows an attacker to cause a denial-of-service through a crafted tiff file. This vulnerability can be triggered by the executable tiffcp. | ||
| CVE-2017-17095 | Hig | 8.8 | < 4.0.9-44.45.1 | 4.0.9-44.45.1 | Dec 2, 2017 | tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file. | |
| CVE-2016-5102 | Med | 5.5 | < 4.0.9-44.42.1 | 4.0.9-44.42.1 | Feb 6, 2017 | Buffer overflow in the readgifimage function in gif2tiff.c in the gif2tiff tool in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (segmentation fault) via a crafted gif file. | |
| CVE-2015-8668 | Cri | 9.8 | < 4.0.9-44.80.1 | 4.0.9-44.80.1 | Jan 8, 2016 | Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image. |
- CVE-2019-17546Oct 14, 2019affected < 4.0.9-44.45.1fixed 4.0.9-44.45.1
tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.
- CVE-2019-14973Aug 14, 2019affected < 4.0.9-44.42.1fixed 4.0.9-44.42.1
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
- CVE-2019-7663Feb 9, 2019affected < 4.0.9-44.42.1fixed 4.0.9-44.42.1
An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a c
- CVE-2019-6128Jan 11, 2019affected < 4.0.9-44.42.1fixed 4.0.9-44.42.1
The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb.
- CVE-2018-17000Sep 13, 2018affected < 4.0.9-44.42.1fixed 4.0.9-44.42.1
A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c (called from TIFFWriteDirectoryTagTransferfunction) in LibTIFF 4.0.9 allows an attacker to cause a denial-of-service through a crafted tiff file. This vulnerability can be triggered by the executable tiffcp.
- affected < 4.0.9-44.45.1fixed 4.0.9-44.45.1
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
- affected < 4.0.9-44.42.1fixed 4.0.9-44.42.1
Buffer overflow in the readgifimage function in gif2tiff.c in the gif2tiff tool in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (segmentation fault) via a crafted gif file.
- affected < 4.0.9-44.80.1fixed 4.0.9-44.80.1
Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
Page 4 of 4