Количество 24
Количество 24
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
Libtiff: libtiff write-what-where
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where ...
SUSE-SU-2025:3961-1
Security update for tiff
SUSE-SU-2025:3941-1
Security update for tiff
RLSA-2025:19156
Important: libtiff security update
RLSA-2025:17675
Important: compat-libtiff3 security update
GHSA-qc8j-wvjf-7jfj
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
ELSA-2025-20998
ELSA-2025-20998: libtiff security update (IMPORTANT)
ELSA-2025-19276
ELSA-2025-19276: libtiff security update (IMPORTANT)
ELSA-2025-19156
ELSA-2025-19156: libtiff security update (IMPORTANT)
ELSA-2025-17710
ELSA-2025-17710: compat-libtiff3 security update (IMPORTANT)
ELSA-2025-17675
ELSA-2025-17675: compat-libtiff3 security update (IMPORTANT)
BDU:2025-13921
Уязвимость библиотеки LibTIFF, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код на целевой системе
SUSE-SU-2025:3957-1
Security update for tiff
RLSA-2025:19113
Important: libtiff security update
ELSA-2025-20956
ELSA-2025-20956: libtiff security update (IMPORTANT)
ELSA-2025-19906
ELSA-2025-19906: mingw-libtiff security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
 | CVE-2025-9900 Libtiff: libtiff write-what-where | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
| CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where ... | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
 | SUSE-SU-2025:3961-1 Security update for tiff | 0% Низкий | 2 месяца назад | |
| SUSE-SU-2025:3941-1 Security update for tiff | 0% Низкий | 2 месяца назад | |
 | RLSA-2025:19156 Important: libtiff security update | 0% Низкий | 2 месяца назад | |
| RLSA-2025:17675 Important: compat-libtiff3 security update | 0% Низкий | 3 месяца назад | |
| GHSA-qc8j-wvjf-7jfj A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
| ELSA-2025-20998 ELSA-2025-20998: libtiff security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2025-19276 ELSA-2025-19276: libtiff security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-19156 ELSA-2025-19156: libtiff security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-17710 ELSA-2025-17710: compat-libtiff3 security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-17675 ELSA-2025-17675: compat-libtiff3 security update (IMPORTANT) | 3 месяца назад | ||
 | BDU:2025-13921 Уязвимость библиотеки LibTIFF, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код на целевой системе | CVSS3: 8.8 | 0% Низкий | 4 месяца назад |
| SUSE-SU-2025:3957-1 Security update for tiff | 2 месяца назад | ||
| RLSA-2025:19113 Important: libtiff security update | 2 месяца назад | ||
| ELSA-2025-20956 ELSA-2025-20956: libtiff security update (IMPORTANT) | около 2 месяцев назад | ||
| ELSA-2025-19906 ELSA-2025-19906: mingw-libtiff security update (IMPORTANT) | 2 месяца назад |
Уязвимостей на страницу