| Bug | Description |
|---|
| TEMP-0846838-9738BD | tiffcrop: divide-by-zero in readSeparateStripsIntoBuffer when BitsPerSample is missing |
| CVE-2025-9900 | A flaw was found in Libtiff. This vulnerability is a "write-what-where ... |
| CVE-2024-7006 | A null pointer dereference flaw was found in Libtiff via `tif_dirinfo. ... |
| CVE-2023-52356 | A segment fault (SEGV) flaw was found in libtiff that could be trigger ... |
| CVE-2023-41175 | A vulnerability was found in libtiff due to multiple potential integer ... |
| CVE-2023-40745 | LibTIFF is vulnerable to an integer overflow. This flaw allows remote ... |
| CVE-2023-30774 | A vulnerability was found in the libtiff library. This flaw causes a h ... |
| CVE-2023-30086 | Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local ... |
| CVE-2023-26966 | libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when lib ... |
| CVE-2023-26965 | loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-ba ... |
| CVE-2023-25435 | libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSample ... |
| CVE-2023-25434 | libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSample ... |
| CVE-2023-25433 | libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiff ... |
| CVE-2023-3618 | A flaw was found in libtiff. A specially crafted tiff file can lead to ... |
| CVE-2023-3576 | A memory leak flaw was found in Libtiff's tiffcrop utility. This issue ... |
| CVE-2023-3316 | A NULL pointer dereference in TIFFClose() is caused by a failure to op ... |
| CVE-2023-2908 | A null pointer dereference issue was found in Libtiff's tif_dir.c file ... |
| CVE-2023-2731 | A NULL pointer dereference flaw was found in Libtiff's LZWDecode() fun ... |
| CVE-2023-0804 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop ... |
| CVE-2023-0803 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop ... |
| CVE-2023-0802 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop ... |
| CVE-2023-0801 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_un ... |
| CVE-2023-0800 | LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop ... |
| CVE-2023-0799 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop. ... |
| CVE-2023-0798 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop. ... |
| CVE-2023-0797 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_uni ... |
| CVE-2023-0796 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop. ... |
| CVE-2023-0795 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop. ... |
| CVE-2022-48281 | processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has ... |
| CVE-2022-34526 | A stack overflow was discovered in the _TIFFVGetField function of Tiff ... |
| CVE-2022-22844 | LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c i ... |
| CVE-2022-4645 | LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:94 ... |
| CVE-2022-3970 | A vulnerability was found in LibTIFF. It has been classified as critic ... |
| CVE-2022-3627 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif ... |
| CVE-2022-3626 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif ... |
| CVE-2022-3599 | LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools ... |
| CVE-2022-3598 | LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifte ... |
| CVE-2022-3597 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif ... |
| CVE-2022-3570 | Multiple heap buffer overflows in tiffcrop.c utility in libtiff librar ... |
| CVE-2022-2953 | LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tool ... |
| CVE-2022-2869 | libtiff's tiffcrop tool has a uint32_t underflow which leads to out of ... |
| CVE-2022-2868 | libtiff's tiffcrop utility has a improper input validation flaw that c ... |
| CVE-2022-2867 | libtiff's tiffcrop utility has a uint32_t underflow that can lead to o ... |
| CVE-2022-2521 | It was found in libtiff 4.4.0rc1 that there is an invalid pointer free ... |
| CVE-2022-2520 | A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion f ... |
| CVE-2022-2519 | There is a double free or corruption in rotateImage() at tiffcrop.c:88 ... |
| CVE-2022-2058 | Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to ... |
| CVE-2022-2057 | Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to ... |
| CVE-2022-2056 | Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to ... |
| CVE-2022-1623 | LibTIFF master branch has an out-of-bounds read in LZWDecode in libtif ... |
| CVE-2022-1622 | LibTIFF master branch has an out-of-bounds read in LZWDecode in libtif ... |
| CVE-2022-1355 | A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() ... |
| CVE-2022-1354 | A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFR ... |
| CVE-2022-0924 | Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers t ... |
| CVE-2022-0909 | Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to ... |
| CVE-2022-0908 | Null source pointer passed as an argument to memcpy() function within ... |
| CVE-2022-0907 | Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libt ... |
| CVE-2022-0891 | A heap buffer overflow in ExtractImageSection function in tiffcrop.c i ... |
| CVE-2022-0865 | Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cau ... |
| CVE-2022-0562 | Null source pointer passed as an argument to memcpy() function within ... |
| CVE-2022-0561 | Null source pointer passed as an argument to memcpy() function within ... |
| CVE-2020-35524 | A heap-based buffer overflow flaw was found in libtiff in the handling ... |
| CVE-2020-35523 | An integer overflow flaw was found in libtiff that exists in the tif_g ... |
| CVE-2020-35522 | In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A craf ... |
| CVE-2020-35521 | A flaw was found in libtiff. Due to a memory allocation failure in tif ... |
| CVE-2020-19144 | Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial ... |
| CVE-2020-19143 | Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial ... |
| CVE-2020-19131 | Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial ... |
| CVE-2020-18768 | There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in ... |
| CVE-2019-17546 | tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0. ... |
| CVE-2019-14973 | _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through ... |
| CVE-2019-7663 | An Invalid Address dereference was discovered in TIFFWriteDirectoryTag ... |
| CVE-2019-6128 | The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory l ... |
| CVE-2018-19210 | In LibTIFF 4.0.9, there is a NULL pointer dereference in the TIFFWrite ... |
| CVE-2018-18661 | An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dere ... |
| CVE-2018-18557 | LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4 ... |
| CVE-2018-17795 | The function t2p_write_pdf in tiff2pdf.c in LibTIFF 4.0.9 and earlier ... |
| CVE-2018-17101 | An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds ... |
| CVE-2018-17100 | An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in ... |
| CVE-2018-17000 | A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c ( ... |
| CVE-2018-16335 | newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c ... |
| CVE-2018-15209 | ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows ... |
| CVE-2018-12900 | Heap-based buffer overflow in the cpSeparateBufToContigBuf function in ... |
| CVE-2018-10963 | The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF thro ... |
| CVE-2018-10801 | TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as dem ... |
| CVE-2018-10779 | TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based buf ... |
| CVE-2018-8905 | In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function ... |
| CVE-2018-7456 | A NULL Pointer Dereference occurs in the function TIFFPrintDirectory i ... |
| CVE-2018-5784 | In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the ... |
| CVE-2018-5360 | LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstr ... |
| CVE-2017-18013 | In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print ... |
| CVE-2017-17942 | In LibTIFF 4.0.9, there is a heap-based buffer over-read in the functi ... |
| CVE-2017-17095 | tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to ... |
| CVE-2017-13727 | There is a reachable assertion abort in the function TIFFWriteDirector ... |
| CVE-2017-13726 | There is a reachable assertion abort in the function TIFFWriteDirector ... |
| CVE-2017-12944 | The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mish ... |
| CVE-2017-11613 | In LibTIFF 4.0.8, there is a denial of service vulnerability in the TI ... |
| CVE-2017-11335 | There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4 ... |
| CVE-2017-10688 | In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectory ... |
| CVE-2017-9936 | In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF ... |
| CVE-2017-9935 | In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2p_wri ... |
| CVE-2017-9815 | In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/t ... |
| CVE-2017-9404 | In LibTIFF 4.0.7, a memory leak vulnerability was found in the functio ... |
| CVE-2017-9403 | In LibTIFF 4.0.7, a memory leak vulnerability was found in the functio ... |
| CVE-2017-9147 | LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in ti ... |
| CVE-2017-9117 | In LibTIFF 4.0.6 and possibly other versions, the program processes BM ... |
| CVE-2017-7602 | LibTIFF 4.0.7 has a signed integer overflow, which might allow remote ... |
| CVE-2017-7601 | LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" un ... |
| CVE-2017-7600 | LibTIFF 4.0.7 has an "outside the range of representable values of typ ... |
| CVE-2017-7599 | LibTIFF 4.0.7 has an "outside the range of representable values of typ ... |
| CVE-2017-7598 | tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a ... |
| CVE-2017-7597 | tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of representa ... |
| CVE-2017-7596 | LibTIFF 4.0.7 has an "outside the range of representable values of typ ... |
| CVE-2017-7595 | The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows re ... |
| CVE-2017-7594 | The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in Lib ... |
| CVE-2017-7593 | tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is proper ... |
| CVE-2017-7592 | The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a lef ... |
| CVE-2017-5563 | LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read i ... |
| CVE-2017-5225 | LibTIFF version 4.0.7 is vulnerable to a heap buffer overflow in the t ... |
| CVE-2016-10371 | The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in ... |
| CVE-2016-10272 | LibTIFF 4.0.7 allows remote attackers to cause a denial of service (he ... |
| CVE-2016-10271 | tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a d ... |
| CVE-2016-10270 | LibTIFF 4.0.7 allows remote attackers to cause a denial of service (he ... |
| CVE-2016-10269 | LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0. ... |
| CVE-2016-10268 | tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a den ... |
| CVE-2016-10267 | LibTIFF 4.0.7 allows remote attackers to cause a denial of service (di ... |
| CVE-2016-10266 | LibTIFF 4.0.7 allows remote attackers to cause a denial of service (di ... |
| CVE-2016-10095 | Stack-based buffer overflow in the _TIFFVGetField function in tif_dir. ... |
| CVE-2016-10094 | Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools ... |
| CVE-2016-10093 | Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9 ... |
| CVE-2016-10092 | Heap-based buffer overflow in the readContigStripsIntoBuffer function ... |
| CVE-2016-9540 | tools/tiffcp.c in libtiff 4.0.6 has an out-of-bounds write on tiled im ... |
| CVE-2016-9539 | tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readCon ... |
| CVE-2016-9538 | tools/tiffcrop.c in libtiff 4.0.6 reads an undefined buffer in readCon ... |
| CVE-2016-9537 | tools/tiffcrop.c in libtiff 4.0.6 has out-of-bounds write vulnerabilit ... |
| CVE-2016-9536 | tools/tiff2pdf.c in libtiff 4.0.6 has out-of-bounds write vulnerabilit ... |
| CVE-2016-9535 | tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that ... |
| CVE-2016-9534 | tif_write.c in libtiff 4.0.6 has an issue in the error code path of TI ... |
| CVE-2016-9533 | tif_pixarlog.c in libtiff 4.0.6 has out-of-bounds write vulnerabilitie ... |
| CVE-2016-9532 | Integer overflow in the writeBufferToSeparateStrips function in tiffcr ... |
| CVE-2016-9453 | The t2p_readwrite_pdf_image_tile function in LibTIFF allows remote att ... |
| CVE-2016-9448 | The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attacke ... |
| CVE-2016-9297 | The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attacke ... |
| CVE-2016-9273 | tiffsplit in libtiff 4.0.6 allows remote attackers to cause a denial o ... |
| CVE-2016-8331 | An exploitable remote code execution vulnerability exists in the handl ... |
| CVE-2016-6223 | The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in ... |
| CVE-2016-5652 | An exploitable heap-based buffer overflow exists in the handling of TI ... |
| CVE-2016-5323 | The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote a ... |
| CVE-2016-5322 | The setByteArray function in tif_dir.c in libtiff 4.0.6 and earlier al ... |
| CVE-2016-5321 | The DumpModeDecode function in libtiff 4.0.6 and earlier allows attack ... |
| CVE-2016-5319 | Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earl ... |
| CVE-2016-5318 | Stack-based buffer overflow in the _TIFFVGetField function in libtiff ... |
| CVE-2016-5317 | Buffer overflow in the PixarLogDecode function in libtiff.so in the Pi ... |
| CVE-2016-5316 | Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c i ... |
| CVE-2016-5315 | The setByteArray function in tif_dir.c in libtiff 4.0.6 and earlier al ... |
| CVE-2016-5314 | Buffer overflow in the PixarLogDecode function in tif_pixarlog.c in Li ... |
| CVE-2016-5102 | Buffer overflow in the readgifimage function in gif2tiff.c in the gif2 ... |
| CVE-2016-3991 | Heap-based buffer overflow in the loadImage function in the tiffcrop t ... |
| CVE-2016-3990 | Heap-based buffer overflow in the horizontalDifference8 function in ti ... |
| CVE-2016-3945 | Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile ... |
| CVE-2016-3658 | The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in ... |
| CVE-2016-3634 | The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibT ... |
| CVE-2016-3633 | The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier ... |
| CVE-2016-3632 | The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earl ... |
| CVE-2016-3631 | The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in Li ... |
| CVE-2016-3625 | tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows rem ... |
| CVE-2016-3624 | The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and earli ... |
| CVE-2016-3623 | The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attacker ... |
| CVE-2016-3622 | The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4 ... |
| CVE-2016-3621 | The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4. ... |
| CVE-2016-3620 | The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4. ... |
| CVE-2016-3619 | The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in ... |
| CVE-2016-3186 | Buffer overflow in the readextension function in gif2tiff.c in LibTIFF ... |
| CVE-2015-8870 | Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows re ... |
| CVE-2015-8784 | The NeXTDecode function in tif_next.c in LibTIFF allows remote attacke ... |
| CVE-2015-8783 | tif_luv.c in libtiff allows attackers to cause a denial of service (ou ... |
| CVE-2015-8782 | tif_luv.c in libtiff allows attackers to cause a denial of service (ou ... |
| CVE-2015-8781 | tif_luv.c in libtiff allows attackers to cause a denial of service (ou ... |
| CVE-2015-8683 | The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 al ... |
| CVE-2015-8668 | Heap-based buffer overflow in the PackBitsPreEncode function in tif_pa ... |
| CVE-2015-8665 | tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a den ... |
| CVE-2015-7554 | The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows attac ... |
| CVE-2015-7313 | LibTIFF before 4.0.7 allows remote attackers to cause a denial of serv ... |
| CVE-2015-1547 | The NeXTDecode function in tif_next.c in LibTIFF allows remote attacke ... |
| CVE-2014-9655 | The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeX ... |
| CVE-2014-9330 | Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows ... |
| CVE-2014-8130 | The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not rejec ... |
| CVE-2014-8129 | LibTIFF 4.0.3 allows remote attackers to cause a denial of service (ou ... |
| CVE-2014-8128 | LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X befor ... |
| CVE-2014-8127 | LibTIFF 4.0.3 allows remote attackers to cause a denial of service (ou ... |
| CVE-2013-4244 | The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier ... |
| CVE-2013-4243 | Heap-based buffer overflow in the readgifimage function in the gif2tif ... |
| CVE-2013-4232 | Use-after-free vulnerability in the t2p_readwrite_pdf_image function i ... |
| CVE-2013-4231 | Multiple buffer overflows in libtiff before 4.0.3 allow remote attacke ... |
| CVE-2013-1961 | Stack-based buffer overflow in the t2p_write_pdf_page function in tiff ... |
| CVE-2013-1960 | Heap-based buffer overflow in the t2p_process_jpeg_strip function in t ... |
| CVE-2012-5581 | Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allow ... |
| CVE-2012-4564 | ppm2tiff does not check the return value of the TIFFScanlineSize funct ... |
| CVE-2012-4447 | Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 a ... |
| CVE-2012-3401 | The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibT ... |
| CVE-2012-2113 | Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow r ... |
| CVE-2012-2088 | Integer signedness error in the TIFFReadDirectory function in tif_dirr ... |
| CVE-2012-1173 | Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow r ... |
| CVE-2011-1167 | Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in ... |
| CVE-2011-0192 | Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other vers ... |
| CVE-2011-0191 | Buffer overflow in LibTIFF 3.9.4 and possibly other versions, as used ... |
| CVE-2010-4665 | Integer overflow in the ReadDirectory function in tiffdump.c in tiffdu ... |
| CVE-2010-3087 | LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attacke ... |
| CVE-2010-2631 | LibTIFF 3.9.0 ignores tags in certain situations during the first stag ... |
| CVE-2010-2630 | The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly vali ... |
| CVE-2010-2598 | LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms, as u ... |
| CVE-2010-2597 | The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 ... |
| CVE-2010-2596 | The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2 ... |
| CVE-2010-2595 | The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in Ima ... |
| CVE-2010-2483 | The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers ... |
| CVE-2010-2482 | LibTIFF 3.9.4 and earlier does not properly handle an invalid td_strip ... |
| CVE-2010-2481 | The TIFFExtractData macro in LibTIFF before 3.9.4 does not properly ha ... |
| CVE-2010-2443 | The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9. ... |
| CVE-2010-2233 | tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used ... |
| CVE-2010-2067 | Stack-based buffer overflow in the TIFFFetchSubjectDistance function i ... |
| CVE-2010-2065 | Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allo ... |
| CVE-2010-1411 | Multiple integer overflows in the Fax3SetupState function in tif_fax3. ... |
| CVE-2009-5022 | Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibT ... |
| CVE-2009-2347 | Multiple integer overflows in inter-color spaces conversion tools in l ... |
| CVE-2009-2285 | Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allo ... |
| CVE-2008-2327 | Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, ... |
| CVE-2006-3465 | Unspecified vulnerability in the custom tag support for the TIFF libra ... |
| CVE-2006-3464 | TIFF library (libtiff) before 3.8.2 allows context-dependent attackers ... |
| CVE-2006-3463 | The EstimateStripByteCounts function in TIFF library (libtiff) before ... |
| CVE-2006-3462 | Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library ... |
| CVE-2006-3461 | Heap-based buffer overflow in the PixarLog decoder in the TIFF library ... |
| CVE-2006-3460 | Heap-based buffer overflow in the JPEG decoder in the TIFF library (li ... |
| CVE-2006-3459 | Multiple stack-based buffer overflows in the TIFF library (libtiff) be ... |
| CVE-2006-2656 | Stack-based buffer overflow in the tiffsplit command in libtiff 3.8.2 ... |
| CVE-2006-2193 | Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in li ... |
| CVE-2006-2120 | The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers ... |
| CVE-2006-2026 | Double free vulnerability in tif_jpeg.c in libtiff before 3.8.1 allows ... |
| CVE-2006-2025 | Integer overflow in the TIFFFetchData function in tif_dirread.c for li ... |
| CVE-2006-2024 | Multiple vulnerabilities in libtiff before 3.8.1 allow context-depende ... |
| CVE-2006-0405 | The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allo ... |
| CVE-2005-2452 | libtiff up to 3.7.0 allows remote attackers to cause a denial of servi ... |
| CVE-2005-1544 | Stack-based buffer overflow in libTIFF before 3.7.2 allows remote atta ... |
| CVE-2004-1308 | Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3 ... |
| CVE-2004-1307 | Integer overflow in the TIFFFetchStripThing function in tif_dirread.c ... |
| CVE-2004-1183 | Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier ... |
| CVE-2004-0886 | Multiple integer overflows in libtiff 3.6.1 and earlier allow remote a ... |
| CVE-2004-0804 | Vulnerability in tif_dirread.c for libtiff allows remote attackers to ... |
| CVE-2004-0803 | Multiple vulnerabilities in the RLE (run length encoding) decoders for ... |