Количество 15
Количество 15
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
CVE-2025-9900
Libtiff: libtiff write-what-where
CVE-2025-9900
A flaw was found in Libtiff. This vulnerability is a "write-what-where ...
RLSA-2025:19276
Important: libtiff security update
RLSA-2025:19156
Important: libtiff security update
RLSA-2025:17675
Important: compat-libtiff3 security update
GHSA-qc8j-wvjf-7jfj
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
ELSA-2025-19276
ELSA-2025-19276: libtiff security update (IMPORTANT)
ELSA-2025-19156
ELSA-2025-19156: libtiff security update (IMPORTANT)
ELSA-2025-17710
ELSA-2025-17710: compat-libtiff3 security update (IMPORTANT)
ELSA-2025-17675
ELSA-2025-17675: compat-libtiff3 security update (IMPORTANT)
ELSA-2025-19113
ELSA-2025-19113: libtiff security update (IMPORTANT)
ROS-20251105-02
Множественные уязвимости libtiff
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-9900 Libtiff: libtiff write-what-where | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
| CVE-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where ... | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
 | RLSA-2025:19276 Important: libtiff security update | 0% Низкий | 7 дней назад | |
| RLSA-2025:19156 Important: libtiff security update | 0% Низкий | 6 дней назад | |
| RLSA-2025:17675 Important: compat-libtiff3 security update | 0% Низкий | 28 дней назад | |
| GHSA-qc8j-wvjf-7jfj A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
| ELSA-2025-19276 ELSA-2025-19276: libtiff security update (IMPORTANT) | 10 дней назад | ||
| ELSA-2025-19156 ELSA-2025-19156: libtiff security update (IMPORTANT) | 11 дней назад | ||
| ELSA-2025-17710 ELSA-2025-17710: compat-libtiff3 security update (IMPORTANT) | 10 дней назад | ||
| ELSA-2025-17675 ELSA-2025-17675: compat-libtiff3 security update (IMPORTANT) | 30 дней назад | ||
| ELSA-2025-19113 ELSA-2025-19113: libtiff security update (IMPORTANT) | 11 дней назад | ||
 | ROS-20251105-02 Множественные уязвимости libtiff | CVSS3: 8.8 | 3 дня назад |
Уязвимостей на страницу