Filtered by vendor Libtiff
Subscribe
Total
227 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2010-2597 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 4.3 MEDIUM | N/A |
The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler optimization that triggers a divide-by-zero error. | |||||
CVE-2010-2631 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 4.3 MEDIUM | N/A |
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481. | |||||
CVE-2010-2630 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 4.3 MEDIUM | N/A |
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481. | |||||
CVE-2010-2443 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 5.0 MEDIUM | N/A |
The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function. | |||||
CVE-2010-2596 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 4.3 MEDIUM | N/A |
The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF image, related to "downsampled OJPEG input." | |||||
CVE-2010-2595 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 4.3 MEDIUM | N/A |
The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers an array index error, related to "downsampled OJPEG input." | |||||
CVE-2010-2065 | 1 Libtiff | 1 Libtiff | 2013-05-14 | 6.8 MEDIUM | N/A |
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow. |