VYPR

Vendor CVEs

LibTIFF

All CVEs

269 total · sorted by risk
  • CVE-2025-8851Aug 11, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the component tiffcrop. The manipulation leads to stack-based buffer overflow. Local access is required to approach this…

  • CVE-2024-13978Aug 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function t2p_read_tiff_init of the file tools/tiff2pdf.c of the component fax2ps. The manipulation leads to null pointer dereference. The attack needs to…

  • CVE-2025-8177Jul 26, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named…

  • CVE-2024-7006Aug 8, 2024
    risk 0.00cvss epss 0.02

    A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an…

  • CVE-2023-52355Jan 25, 2024
    risk 0.00cvss epss 0.02

    An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of service via a crafted input with a size smaller than 379 KB.

  • CVE-2023-6228Dec 18, 2023
    risk 0.00cvss epss 0.00

    An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash.

  • CVE-2023-6277Nov 24, 2023
    risk 0.00cvss epss 0.02

    An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

  • CVE-2023-3164Nov 2, 2023
    risk 0.00cvss epss 0.00

    A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file.

  • CVE-2023-41175Oct 5, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.

  • CVE-2023-40745Oct 5, 2023
    risk 0.00cvss epss 0.01

    LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.

  • CVE-2023-3576Oct 4, 2023
    risk 0.00cvss epss 0.00

    A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually…

  • CVE-2022-40090Aug 22, 2023
    risk 0.00cvss epss 0.01

    An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file.

  • CVE-2020-18768Aug 22, 2023
    risk 0.00cvss epss 0.00

    There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in libtiff 4.0.10, which allows an attacker to cause a denial-of-service through a crafted tiff file.

  • CVE-2023-3618Jul 12, 2023
    risk 0.00cvss epss 0.01

    A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.

  • CVE-2023-2908Jun 30, 2023
    risk 0.00cvss epss 0.01

    A null pointer dereference issue was found in Libtiff's tif_dir.c file. This issue may allow an attacker to pass a crafted TIFF image file to the tiffcp utility which triggers a runtime error that causes undefined behavior. This will result in an application crash, eventually…

  • CVE-2023-26966Jun 29, 2023
    risk 0.00cvss epss 0.00

    libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian.

  • CVE-2023-25433Jun 29, 2023
    risk 0.00cvss epss 0.00

    libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.

  • CVE-2023-25435Jun 21, 2023
    risk 0.00cvss epss 0.00

    libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753.

  • CVE-2023-3316Jun 19, 2023
    risk 0.00cvss epss 0.01

    A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.

  • CVE-2023-26965Jun 14, 2023
    risk 0.00cvss epss 0.00

    loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image.

  • CVE-2023-25434Jun 14, 2023
    risk 0.00cvss epss 0.01

    libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215.

  • CVE-2023-30774May 19, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.

  • CVE-2023-30775May 19, 2023
    risk 0.00cvss epss 0.00

    A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c.

  • CVE-2023-2731May 17, 2023
    risk 0.00cvss epss 0.00

    A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file, resulting in…

  • CVE-2023-30086May 9, 2023
    risk 0.00cvss epss 0.00

    Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.

  • CVE-2023-1916Apr 10, 2023
    risk 0.00cvss epss 0.00

    A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue…

  • CVE-2022-4645Mar 3, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.

  • CVE-2023-0798Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

  • CVE-2023-0803Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.

  • CVE-2023-0800Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.

  • CVE-2023-0801Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available…

  • CVE-2023-0802Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.

  • CVE-2023-0796Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

  • CVE-2023-0799Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

  • CVE-2023-0797Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available…

  • CVE-2023-0804Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.

  • CVE-2023-0795Feb 13, 2023
    risk 0.00cvss epss 0.00

    LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

  • CVE-2022-48281Jan 23, 2023
    risk 0.00cvss epss 0.00

    processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

  • CVE-2022-3970Nov 13, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed…

  • CVE-2022-3570Oct 21, 2022
    risk 0.00cvss epss 0.00

    Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other…

  • CVE-2022-3597Oct 21, 2022
    risk 0.00cvss epss 0.01

    LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is…

  • CVE-2022-3598Oct 21, 2022
    risk 0.00cvss epss 0.01

    LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b.

  • CVE-2022-3599Oct 21, 2022
    risk 0.00cvss epss 0.01

    LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.

  • CVE-2022-3627Oct 21, 2022
    risk 0.00cvss epss 0.01

    LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is…

  • CVE-2022-3626Oct 21, 2022
    risk 0.00cvss epss 0.01

    LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is…

  • CVE-2022-1354Aug 31, 2022
    risk 0.00cvss epss 0.01

    A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.

  • CVE-2022-2521Aug 31, 2022
    risk 0.00cvss epss 0.01

    It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose() at tif_close.c:131 called by tiffcrop.c:2522 that can cause a program crash and denial of service while processing crafted input.

  • CVE-2022-2520Aug 31, 2022
    risk 0.00cvss epss 0.01

    A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.

  • CVE-2022-1355Aug 31, 2022
    risk 0.00cvss epss 0.01

    A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of…

  • CVE-2022-2519Aug 31, 2022
    risk 0.00cvss epss 0.01

    There is a double free or corruption in rotateImage() at tiffcrop.c:8839 found in libtiff 4.4.0rc1

Page 4 of 6