libtiff vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the libtiff package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
NULL Pointer Dereference

*
  • M
Heap-based Buffer Overflow

*
  • M
Out-of-bounds Write

*
  • M
Resource Exhaustion

*
  • L
Out-of-bounds Write

*
  • M
Integer Overflow or Wraparound

*
  • M
Integer Overflow or Wraparound

*
  • L
Heap-based Buffer Overflow

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • L
Out-of-bounds Read

*
  • M
Buffer Overflow

*
  • M
Buffer Overflow

*
  • M
Buffer Overflow

*
  • M
Out-of-Bounds

*
  • M
Buffer Overflow

*
  • M
NULL Pointer Dereference

*
  • M
Out-of-bounds Write

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • L
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Write

*
  • M
Use After Free

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Write

*
  • M
Integer Overflow to Buffer Overflow

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Write

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Heap-based Buffer Overflow

*
  • M
Out-of-bounds Write

*
  • M
Heap-based Buffer Overflow

*
  • L
Incorrect Calculation of Buffer Size

*
  • M
Double Free

*
  • L
Release of Invalid Pointer or Reference

*
  • L
Improper Validation of Specified Quantity in Input

*
  • M
Integer Underflow

*
  • M
Integer Underflow

*
  • M
Divide By Zero

*
  • M
Divide By Zero

*
  • M
Divide By Zero

*
  • M
Out-of-Bounds

*
  • L
Buffer Overflow

*
  • M
Reachable Assertion

*
  • M
Out-of-bounds Read

*
  • L
NULL Pointer Dereference

*
  • M
NULL Pointer Dereference

*
  • M
NULL Pointer Dereference

*
  • M
Out-of-bounds Read

*
  • M
Out-of-Bounds

*
  • M
Reachable Assertion

<0:4.0.3-32.el7
  • M
Out-of-bounds Write

<0:4.0.3-32.el7
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • M
Integer Overflow or Wraparound

<0:4.0.3-27.el7_3
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • M
Out-of-bounds Write

<0:4.0.3-27.el7_3
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • M
Heap-based Buffer Overflow

<0:4.0.3-27.el7_3
  • H
Heap-based Buffer Overflow

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-Bounds

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Read

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Read

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Security Features

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Read

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • H
Out-of-Bounds

<0:4.0.3-25.el7_2
  • H
Out-of-Bounds

<0:4.0.3-25.el7_2
  • H
Divide By Zero

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Read

<0:4.0.3-25.el7_2
  • H
Out-of-bounds Write

<0:4.0.3-25.el7_2
  • M
Integer Overflow or Wraparound

<0:4.0.3-35.el7
  • M
Integer Overflow or Wraparound

<0:4.0.3-35.el7
  • M
Heap-based Buffer Overflow

<0:4.0.3-32.el7
  • M
NULL Pointer Dereference

<0:4.0.3-32.el7
  • M
Stack-based Buffer Overflow

<0:4.0.3-32.el7
  • M
Heap-based Buffer Overflow

<0:4.0.3-32.el7
  • L
Resource Exhaustion

*
  • M
Out-of-bounds Read

*
  • L
Improper Initialization

*
  • L
Memory Leak

*
  • L
Resource Exhaustion

*
  • L
Memory Leak

*
  • L
Memory Leak

*
  • M
Out-of-bounds Read

*
  • L
Out-of-bounds Read

*
  • L
Integer Overflow or Wraparound

*
  • L
Divide By Zero

*
  • L
Divide By Zero

*
  • L
Improper Input Validation

*
  • L
Improper Input Validation

*
  • L
Improper Input Validation

*
  • L
Improper Input Validation

*
  • L
Incorrect Type Conversion or Cast

*
  • L
Out-of-Bounds

*
  • L
Missing Release of Resource after Effective Lifetime

*
  • L
Integer Overflow or Wraparound

*
  • M
Heap-based Buffer Overflow

*
  • M
Heap-based Buffer Overflow

*
  • L
Out-of-bounds Read

*
  • L
Information Exposure

*
  • L
Reachable Assertion

*
  • L
Resource Exhaustion

*
  • L
Reachable Assertion

*
  • M
Heap-based Buffer Overflow

*
  • L
Improper Input Validation

*
  • M
Out-of-bounds Write

*
  • M
Integer Overflow or Wraparound

*
  • L
Integer Overflow or Wraparound

*
  • M
Out-of-bounds Read

*
  • L
Improper Null Termination

*
  • L
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Out-of-bounds Read

*
  • M
Stack-based Buffer Overflow

*
  • M
Divide By Zero

*
  • M
Heap-based Buffer Overflow

*
  • M
Stack-based Buffer Overflow

*
  • M
Stack-based Buffer Overflow

<0:4.0.3-32.el7
  • L
Out-of-bounds Read

*
  • L
Out-of-bounds Write

*
  • L
Divide By Zero

*
  • M
Out-of-bounds Write

*
  • M
Integer Overflow or Wraparound

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Heap-based Buffer Overflow

*
  • L
Heap-based Buffer Overflow

*
  • L
Divide By Zero

*
  • L
Reachable Assertion

*
  • L
Heap-based Buffer Overflow

*
  • L
Integer Overflow or Wraparound

*
  • L
Divide By Zero

*
  • L
Heap-based Buffer Overflow

*
  • M
Off-by-one Error

*
  • M
Heap-based Buffer Overflow

*
  • M
Integer Overflow or Wraparound

*
  • L
Improper Clearing of Heap Memory Before Release ('Heap Inspection')

*
  • L
Heap-based Buffer Overflow

*
  • L
Out-of-bounds Write

*
  • L
NULL Pointer Dereference

*
  • M
Out-of-bounds Write

<0:4.0.3-32.el7
  • M
Out-of-Bounds

<0:4.0.3-32.el7
  • M
Heap-based Buffer Overflow

*
  • M
Integer Overflow or Wraparound

<0:4.0.3-32.el7
  • L
Missing Release of Resource after Effective Lifetime

*
  • M
Heap-based Buffer Overflow

*